Home > Switches > Monitoring and Reporting > Monitoring and Containing DHCP Servers

Monitoring and Containing DHCP Servers

Table of contents
No headers
See as well as block or allow all DHCP servers running on your network using DHCP server visibility and containment under Configure > DHCP serversQuickly and easily identify any rogue DHCP servers as well as locate the switch and port a specific DHCP server is located behind. Choose to explicitly allow or deny DHCP servers on your network at layer 2 by MAC address. In addition, set email alerts to be notified when new DHCP servers are seen.


Block rogue DHCP server(s)

Networks often have publicly available ports that may need to be protected from unintentional or malicious activity, including the connection of un-wanted DHCP servers. Easily block or whitelist only permitted DHCP servers in your network by MAC address.


Blocking DHCP by MAC address will deny DHCP (bootp) packets for all subnets as this will be done at Layer 2. Be careful about blocking the DHCP server that has issued an IP lease to your switch(es). It is recommended that you statically assign an IP address to each of your switches to prevent unintentional outages. See uplink configuration


You must to post a comment.
Last modified
16:25, 16 Mar 2016


This page has no custom tags.


This page has no classifications.

Article ID

ID: 4459

Contact Support

Most questions can be answered by reviewing our documentation, but if you need more help, Cisco Meraki Support is ready to work with you.

Open a Case

Ask the Community

In the Meraki Community, you can find answers provided by fellow Meraki users and ask questions of your own.

Visit the Community