cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
12505
Views
0
Helpful
5
Replies

ASA 5505 DHCP Reservation list

tstrosnider
Level 1
Level 1

Hi Guys -

I'm wondering how others out there are addressing remote offices/users with asa 5505's at the location and offering DHCP locally from the asa itself instead of across the vpn tunnel. 

I am trying to set DHCP Reservations by MAC Address for my "approved" devices such as laptops instead of having to assign static ip's in the office; so the user does not have to remember to switch from dhcp to static, etc.

The only way I know how to acomplish this is to have a dedicated dhcp server outside of the asa running mac reservations; which is what I am trying to advoid having to do and let the ASA provide the addresses.

All asa's are loaded with current software 9.1(3)

Many Thanks

-Trevor

5 Replies 5

Joshua Koch
Level 1
Level 1

Trevor,

Thank you for using the SRCUG forum and posting your question.  The ASA only supports DHCP reservations when connecting a client via VPN and not on the internal network.  A work around could be to use your intenral switch if it supports layer 3 and manually bind the IP address to MAC address withing the DHCP Pool configuration:

ip dhcp pool {client name} 

 host {static IP address} 

 hardware-address {client MAC} ieee802

 client-name {name of client}

However, there is a caveat to this, you will need to create a DHCP Pool for each manual bind, you can only have one manul bind per DHCP pool. 

http://www.cisco.com/en/US/docs/ios-xml/ios/ipaddr_dhcp/configuration/12-4t/config-dhcp-server.html#GUID-68D87544-7C6F-48C9-9DFE-56F5B7E4A89D

Configuring Manual Bindings

An address binding is a mapping between the IP address and MAC address of a client. The IP address of a client can be assigned manually by an administrator or assigned automatically from a pool by a DHCP server.

Manual bindings are IP addresses that have been manually mapped to the MAC addresses of hosts that are found in the DHCP database. Manual bindings are stored in NVRAM on the DHCP server. Manual bindings are just special address pools. There is no limit on the number of manual bindings, but you can configure only one manual binding per host pool.

Automatic bindings are IP addresses that have been automatically mapped to the MAC addresses of hosts that are found in the DHCP database. Because the bindings are stored in volatile memory on the DHCP server, binding information is lost in the event of a power failure or upon router reload for any other reason. To prevent the loss of automatic binding information in such an event, store a copy of the automatic binding information on a remote host called a DHCP database agent. The bindings are periodically written to the database agent. If the router reloads,