As noted in the CUCM SRND here:
http://www.cisco.com/en/US/docs/voice_ip_comm/cucm/srnd/7x/security.html#wp1045687
Cisco doesn't set a "best practices" rule. Instead they say (and
rightfully so) that it depends on your Security Policy.
You would really have to have more information such as:
- How many phones on the DHCP Subnet?
- How often do they renew their leases?
- Model of the switch?
All in all, as with most things in security that you wish to limit,
you really need to establish a baseline for your own DHCP Voice
traffic, and then create a limit slightly higher than what is "normal"
DHCP traffic (in PPS).
HTH,
--
Mark Snow
CCIE #14073 (Voice, Security)
Senior Technical Instructor - IPexpert, Inc.
Telephone: +1.810.326.1444
Fax: +1.309.413.4097
Mailto: ms...@ipexpert.com
--
Join our free online support and peer group communities:
http://www.IPexpert.com/communities
--
IPexpert - The Global Leader in Self-Study, Classroom-Based, Video-On-
Demand and Audio Certification Training Tools for the Cisco CCIE R&S
Lab, CCIE Security Lab, CCIE Service Provider Lab , CCIE Voice Lab and
CCIE Storage Lab Certifications.
--
On Aug 26, 2009, at 3:33 PM, SYED HUSSAIN wrote:
Hi Guys,
Can someone tell me what is the recommended DHCP snooping limit rate
for Voice traffic?
Thanks
_______________________________________________
For more information regarding industry leading CCIE Lab training,
please visit www.ipexpert.com
_______________________________________________
For more information regarding industry leading CCIE Lab training, please visit
www.ipexpert.com
