https://community.cisco.com/t5/network-security/cisco-ftd-2100-capture-dhcp-packets-on-client-nodes-subnet-dhcp/m-p/5091399#M1112149 <P>I've configured DHCP relay on the FTD and I have a 2nd FTD as a backup default gateway.&nbsp; x.x.x.1 and x.x.x.2 respectively.&nbsp; However something is wrong.&nbsp; When I enabled DHCP relay on the .1 FTD only, the DHCP relay wouldn't work and then I enabled this on the .2 FTD, it now works.&nbsp; I want to know why its not working w/ the .1 FTD.&nbsp; I realize that its probably an access-list issue and I can probably just mirror the configuration from the .2 to the .1 but I really want to troubleshoot the issue, not just get it to work.</P><P>I've enabled WireShark on the client and I can see the initial DHCP Discover packets was going out.&nbsp; I realize that there are some ancillary data that I can collect but to just see the packets reach the FTD interface and see the FTD process kick in is important to me.&nbsp; Its a premier FW and I should be able to see the FW process the DHCP packets.&nbsp;</P><P>I'm aware that the DHCP process (DORA) in the discovery phase lists the source as 0.0.0.0:67 and the destination as 255.255.255.255:68.&nbsp; Is there a way to capture DHCP packets for troubleshooting purposes?</P> Mon, 06 May 2024 17:29:27 GMT red2play 2024-05-06T17:29:27Z https://community.cisco.com/t5/network-security/cisco-ftd-2100-capture-dhcp-packets-on-client-nodes-subnet-dhcp/m-p/5091399#M1112149 <P>I've configured DHCP relay on the FTD and I have a 2nd FTD as a backup default gateway.&nbsp; x.x.x.1 and x.x.x.2 respectively.&nbsp; However something is wrong.&nbsp; When I enabled DHCP relay on the .1 FTD only, the DHCP relay wouldn't work and then I enabled this on the .2 FTD, it now works.&nbsp; I want to know why its not working w/ the .1 FTD.&nbsp; I realize that its probably an access-list issue and I can probably just mirror the configuration from the .2 to the .1 but I really want to troubleshoot the issue, not just get it to work.</P><P>I've enabled WireShark on the client and I can see the initial DHCP Discover packets was going out.&nbsp; I realize that there are some ancillary data that I can collect but to just see the packets reach the FTD interface and see the FTD process kick in is important to me.&nbsp; Its a premier FW and I should be able to see the FW process the DHCP packets.&nbsp;</P><P>I'm aware that the DHCP process (DORA) in the discovery phase lists the source as 0.0.0.0:67 and the destination as 255.255.255.255:68.&nbsp; Is there a way to capture DHCP packets for troubleshooting purposes?</P> Mon, 06 May 2024 17:29:27 GMT https://community.cisco.com/t5/network-security/cisco-ftd-2100-capture-dhcp-packets-on-client-nodes-subnet-dhcp/m-p/5091399#M1112149 red2play 2024-05-06T17:29:27Z https://community.cisco.com/t5/network-security/cisco-ftd-2100-capture-dhcp-packets-on-client-nodes-subnet-dhcp/m-p/5091404#M1112150 <P>You config both FTD in ip helper-address?</P> <P>If yes&nbsp;</P> <P>Then&nbsp;</P> <P>In each ftd do</P> <P>Capture dhcp interface &lt;name of interfaces connect to host&gt; match ip host &lt;ip of interfaces under which you config helper address&gt; host &lt;ip of ftd<SPAN>i nterface &gt;</SPAN></P> <P><SPAN>MHM</SPAN></P> Mon, 06 May 2024 17:40:27 GMT https://community.cisco.com/t5/network-security/cisco-ftd-2100-capture-dhcp-packets-on-client-nodes-subnet-dhcp/m-p/5091404#M1112150 MHM Cisco World 2024-05-06T17:40:27Z