Hey guys,

We're currently in the process of upgrading our access layer switches to Catalysts 3560s, which offer the folowing layer 2 security features:

port security
dhcp snooping
arp inspection
ip source guard

With those features implemented, it, at least on paper, makes for pretty secure segments...

One of the main motivations for the upgrade being the use of those features, and so I'm in the process of testing prior to rollout and I was wondering if anyone else here has experience using those features... Any advice?