The Dynamic Host Configuration Protocol (DHCP) snooping feature ensures that DHCP clients obtain IP addresses only from authorized DHCP servers and a DHCP snooping-enabled device records mappings between IP addresses and MAC addresses of DHCP clients, preventing DHCP attacks on the network.
DHCP defined in RFC 2131 is susceptible to certain attacks, such as a bogus DHCP server attack, DHCP server DoS attack, and bogus DHCP message attack.
DHCP snooping functions as a firewall between DHCP clients and the DHCP server to prevent DHCP attacks on the network, facilitating security for communication services.