Home > Switches > Monitoring and Reporting > Monitoring and Containing DHCP Servers

Monitoring and Containing DHCP Servers

Table of contents
No headers
See as well as block or allow all DHCP servers running on your network using DHCP server visibility and containment under Configure > DHCP serversQuickly and easily identify any rogue DHCP servers as well as locate the switch and port a specific DHCP server is located behind. Choose to explicitly allow or deny DHCP servers on your network at layer 2 by MAC address. In addition, set email alerts to be notified when new DHCP servers are seen.


Block rogue DHCP server(s)

Networks often have publicly available ports that may need to be protected from unintentional or malicious activity, including the connection of un-wanted DHCP servers. Easily block or whitelist only permitted DHCP servers in your network by MAC address.


Blocking DHCP by MAC address will deny DHCP (bootp) packets for all subnets as this will be done at Layer 2. Be careful about blocking the DHCP server that has issued an IP lease to your switch(es). It is recommended that you statically assign an IP address to each of your switches to prevent unintentional outages. See uplink configuration


You must to post a comment.
Last modified



This page has no classifications.

Explore the Product

Click to Learn More

Article ID

ID: 4459

Explore Meraki

You can find out more about Cisco Meraki on our main site, including information on products, contacting sales and finding a vendor.

Explore Meraki

Contact Support

Most questions can be answered by reviewing our documentation, but if you need more help, Cisco Meraki Support is ready to work with you.

Open a Case

Ask the Community

In the Meraki Community, you can keep track of the latest announcements, find answers provided by fellow Meraki users and ask questions of your own.

Visit the Community