Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
798
Views
0
Helpful
3
Replies

Firewall config to allow comunication for DHCP server

suryakant.chavan
Level 1
Level 1

‎11-20-2011 12:13 PM - edited ‎03-11-2019 02:53 PM

Hi Expert,

We have DHCP server which is placed at inside to our network. Now the problem we are facing is PC's are not able to get ip's from dhcp srever. As I checked configuration on Layer 3 switch is ok i.e we have added dhcp server ip in ip helper address command plcaed under SVI interface. But I am suspecting issue with firewall configuration. Can anyone please send me the configuration that should be on firewall.

Thank in advance.

Regards,

Surya

Labels:
0 Helpful
3 Replies 3

mvsheik123
Level 7
Level 7

‎11-20-2011 01:13 PM

PIX/ASA is in between the client and DHCP server. If so, check this link..

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a008075fcfb.shtml

Thx

MS

0 Helpful

suryakant.chavan
Level 1
Level 1
In response to mvsheik123

‎11-20-2011 03:13 PM

Hi MS,

Appreciate prompt reply.

I want some more explanation , if i am putting acl on my SVI interface of Layer three switch , which is used as default gateway for pc.

Which ports should i open & what source i should mention in extended acl

Regards,

Surya

0 Helpful

Julio Carvajal
VIP Alumni
VIP Alumni
In response to suryakant.chavan

‎11-20-2011 04:27 PM

Hello,

All you need is the IP helper command on the layer 3 switch, now on the ASA you do not need any access-list to allow the DHCP request from the clients and comming from the server.

Are the users able to ping the ASA interface??

Can you share the DHCP configuration on the ASA?

Can you share the Layer 3 switch changes you have made to allow this communication?

Please rate helpfull post,

Regards,

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card
Top