DHCP Starvation
Have you ever been attacked by a DHCP starvation attack? Did you have the right security measures in place to protect yourself and ensure business continuity? What do you think is essential in a DRP, BRP, or in securing the first three layers of the OSI model?
Yes, dealt with DHCP starvation before. Key defenses:
DHCP snooping on switches Port security + MAC limits Redundant DHCP servers with failover Network segmentation For DRP/BCP: Real-time monitoring and automated incident response are essential.
Prevention beats recovery every time. What's your environment - enterprise or SMB?
It's mostly an SMB setup, but we're aiming to implement enterprise-grade security where feasible. I'm especially interested in how others handle DHCP starvation prevention and what they include in DRP/BRP plans for the lower OSI layers.
We had an issue two days ago, because we didn't have that kind of configurations in our sophos.