CCIE Data Center (legacy) — Question 103

Which three statements about the DHCP snooping feature on Cisco Nexus switches are true? (Choose three.)

Answer options

• A. DHCP snooping commands are not available until the feature is enabled with the feature dhcp- snooping command.
• B. When you enable the DHCP snooping feature, the switch begins building and maintaining the DHCP snooping binding database.
• C. The switch will not validate DHCP messages received or use the DHCP snooping binding database to validate subsequent requests from untrusted hosts until DHCP snooping is enabled globally and for each specific VLAN.
• D. Globally disabling DHCP snooping removes all DHCP snooping configuration on the switch.
• E. Globally disabling DHCP snooping does not remove any DHCP snooping configuration or the configuration of other features that are dependent upon the DHCP snooping feature.

Correct answer: B, C, E

Explanation

Option B is correct because enabling DHCP snooping initiates the creation of the binding database. Option C is also accurate as the validation of DHCP messages requires DHCP snooping to be enabled globally and per VLAN. Option E is true since disabling DHCP snooping globally does not affect existing configurations, unlike option D, which incorrectly states that all configurations are removed.