cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
4415
Views
0
Helpful
7
Replies

ASA - DHCP relay not working

dario.didio
Enthusiast
Enthusiast

Hi all,

 

I'm having an issue with DHCP relay on my ASA.

My clients are in a DMZ and my DHCP server is behind the inside interface.

DHCPrelay is configured correctly, but clients are not getting an IP address.

 

After troubleshooting, I'm under the impression that the problem is that packets sourced from the ASA (which DHCPrelay does) are getting dropped.

When doing a packet trace with source IP the IP address of the ASA's DMZ interface to the DHCP server, the packet is dropped, eventhough I have an explicit rule allowing this.

 

All examples I run in to with regards to DHCPrelay on ASA, are always with clients on the inside and DHCP server on the DMZ/outside; being the packet going from a higher security level to a lower one. In my case, it is the opposite.

 

Anyone that can help?


Thanks,

Dario

7 Replies 7

marce1000
VIP Mentor VIP Mentor
VIP Mentor

 

 - Check wether any of the items discussed in this thread can be helpfull to you.

  https://supportforums.cisco.com/t5/firewalling/dhcp-relay-on-asa-5505-to-windows-dhcp-server-not-working/td-p/2764667

M.

Hi,
thanks for the answer, much appreciated!
unfortunately, it doesn't solve my problem and I cannot move the DHCP functionality to my ASA, it needs to be relayed.
Thanks,
Dario

 

 - I understand, but the article just discusses that 'only' (!).

M.

dario.didio
Enthusiast
Enthusiast