I'm having an issue with DHCP relay on my ASA.
My clients are in a DMZ and my DHCP server is behind the inside interface.
DHCPrelay is configured correctly, but clients are not getting an IP address.
After troubleshooting, I'm under the impression that the problem is that packets sourced from the ASA (which DHCPrelay does) are getting dropped.
When doing a packet trace with source IP the IP address of the ASA's DMZ interface to the DHCP server, the packet is dropped, eventhough I have an explicit rule allowing this.
All examples I run in to with regards to DHCPrelay on ASA, are always with clients on the inside and DHCP server on the DMZ/outside; being the packet going from a higher security level to a lower one. In my case, it is the opposite.
Anyone that can help?
- Check wether any of the items discussed in this thread can be helpfull to you.