Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1234
Views
6
Helpful
11
Replies

How to differentiate between two external DHCP servers

Ditter
Level 4
Level 4

‎10-25-2024 08:13 AM

Hi to all ,

 

running software version (FMC)  7.4.2-172 and FTD 7.2.8.

How can i differentiate and use as external DHCP server , for example DHCP-SERVER-1 for some vlans and for some other vlans to use as DHCP server the DHCP-SERVER-2?

I have added both servers is DHCP servers tab , but in DHCP Relay tab , i can not differentiate for each vlan the server i need to use.

Any ideas?

Thanks,

Ditter.

 

 

0 Helpful
11 Replies 11

balaji.bandi
Hall of Fame
Hall of Fame

‎10-25-2024 09:25 AM

Hope your DHCP Server have respected DHCP pool relation to the VLAN right, or both DHCP Sever have all VLAN IP address (then that is tricky)

if the each DHCP host different VLAN IP address then that does not matter client will go order of DHCP Server to get IP address - based on the vlan its orginating from)

as long as the VLAN SVI have correct helper address.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Ditter
Level 4
Level 4

‎10-25-2024 09:40 AM

Thanks @balaji.bandi 

All the vlans in the FTD should use one of two external DHCP Servers , so the FTD relays this info, but i do not understand how to define the correct helper address in the FTD (an mentioned some FTD vlans use one dhcp server and some others should use another DHCP server).

I can not find how to indicate to different vlans a different external DHCP server (a DHCP server serves many vlans and resides in the outside interface of the FTD). 

Thanks,

Ditter

0 Helpful

Rob Ingram
VIP
VIP
In response to Ditter

‎10-25-2024 09:58 AM

@Ditter I don't believe you still cannot define a different DHCP server per VLAN. You'd have to define multiple DHCP servers for all VLANs, which DHCP server has the scope for that network would respond. Or use a helper address on the local switch instead of the FTD and then you define different DHCP servers per VLAN.

0 Helpful

Ditter
Level 4
Level 4

‎10-25-2024 10:11 AM

Sorry but i am confused. Look at the two screenshots , maybe i can not express correctly what i mean.

I would like vlan 3 to point to external dhcp server 192.168.65.7 and vlan 100 to point to external server 192.168.65.8.

Is that possible?

Currently it works OK when i have only dhcp server 192.168.65.7 , but when i add another dhcp server 192.168.65.8 how can i point clients in vlan 100 to go to 192.168.65.8 (instead of 192.168.65.7). Shouldn't i be able to define the helper address inside the FTD?

Preview file
30 KB
Preview file
31 KB
0 Helpful

Rob Ingram
VIP
VIP
In response to Ditter

‎10-25-2024 10:17 AM

@Ditter no, that's not possible.

Cristian Matei
VIP Alumni
VIP Alumni
In response to Ditter

‎10-29-2024 04:44 PM

Hi,

  You can't make a one-to-one mapping on FTD, however you can apply a workaround. As long as DHCP server on 192.168.65.7 ONLY has pool configured for VLAN3 subnet and DHCP server on 192.168.65.8 ONLY has pool configured for VLAN100, it will work with provided config. FTD will relay each DHCP Client Discovery message from both VLANs to both DHCP servers, however only the DHCP server with the configured pool will reply, as FTD will insert its VLAN3 and VLAN100 IPv4 addresses as GIADDR field within DHCP payload, thus instructing DHCP servers from which pool to assign IP addresses.

Best,

Cristian.

Ditter
Level 4
Level 4
In response to Cristian Matei

‎10-30-2024 07:55 AM

Thanks for your answer.

The problem is that one of these DHCP servers,  serves many vlans and the second DHCP server serves only one vlan.

0 Helpful

Ditter
Level 4
Level 4

‎10-25-2024 10:22 AM - edited ‎10-25-2024 10:26 AM

@Rob Ingram @balaji.bandi That is sad, it would help to differentiate FTD Vlans pointing to different DHCP Servers.

Maybe in a future release?

We will see,

Ditter

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to Ditter

‎10-26-2024 12:56 AM

Since its Firewall we don't expect more of the enterprise Lan features needed, that is my views.

firewall in the path, so end edge device make decision what DHCP Server to be used most cases.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

MHM Cisco World
VIP
VIP
In response to Ditter

‎10-29-2024 05:22 AM

I dont see why you can not do that 
you have two interface one for each VLAN 
then using different server to assign IP for each client 

can you more elaborate 

thanks 

MHM

0 Helpful

Ditter
Level 4
Level 4
In response to MHM Cisco World

‎10-30-2024 07:51 AM

Hi MHM, i have described it above.  

Some vlans on the FTD need to ask a specific DHCP server that serves these specific FTD based vlans , but i need for a specific vlan on the FTD to use another DHCP server. I send again the two png from my config: 

In these pngs you can see only two user vlans but there exist more. 

Thanks.

Preview file
30 KB
Preview file
31 KB
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card