Aruba & ProVision-based
cancel
Showing results for 
Search instead for 
Did you mean: 

Unauthorized server 0.0.0.0

 
TerjeAFK
Respected Contributor

Unauthorized server 0.0.0.0

At our branch offices we use a combo of Aruba and Procurve switches: Aruba S3500 as core switch and Procurve 2530/2910/2920 as access switches. We have enabled DHCP snooping on all the switches. On the access switches we often get the following message in the switch log:

W 06/01/16 10:06:36 00854 dhcp-snoop: backplane: Unauthorized server 0.0.0.0 detected on port 51

Port 51 is the port connecting the access switch to the Aruba core switch.

Has anyone come across this? Usually when we find a rogue DHCP server it's an employee who has brought a home WiFi router to work and plugged it into an office network outlet, and then the router will get a regular IP address from our DHCP server.