This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.
In our Environment Currently running with ISE 2.1 with patch 1,3 & 5.
Our Company is planning to make ISE as DHCP server for providing 25K IP address with 100 subnets.
IS it feasible to configure for ISE as DHCP , if configured what will be impact (or) any future issue with ISE with DHCP Server.
is anyone applied this setup in their environment ?
Needful suggestion would be highly appreciated.
Solved! Go to Solution.
but still, if we want to enable DHCP on ISE
is it feasible for 25K IP address with more than 100 subnets ? what be the performance impact on ISE with future issues related with DHCP.
Does anyone have implemented this solution, if so what are the challenges you have faced in your network.
To clarify a bit...
The DNS/DHCP server function in ISE is specific to Auth VLAN feature to support 3rd-party or other NADs that lack URL redirect support. As such, it will delve out IP addresses with a DNS server address that points to ISE itself to sinkhole your web traffic until auth is complete!
Next, the lease timers are deliberately set to low values to facilitate re-DHCP post auth and allow endpoint to get IP address in new access VLAN at which point the ISE DNS/DHCP server is no longer used, i.e. you must use an external DHCP server in access VLAN.
This is why you would not use the ISE DNS or DHCP server for any general use case.