03-09-2020 09:06 AM
Hello.
Is there still a limit to the amount of IPs that can be configured in a DHCP pool?
If there is a limit and we need more than 256 IPs to support our Remote Access VPN clients, can multiple pools be created to accommodate them?
Thanks in advance.
03-09-2020 09:25 AM
Hi,
The DHCP pool limit, you define it; you can make it /24, /26, /16, /10, whatever. In general, for IPv4 and traditional VLAN/switching, the bigger the pool, the bigger the broadcast domain, which can pose some challenges. In the case of DHCP pool for VPN clients, there is no broadcast domain, so you don't need to worry about it.
At the same time, it's better to group your users based own the different authorization policies they will receive, and use different DHCP/IP pools for each group, in order to make easier policies, per IP subnet.
Regards,
Cristian Matei.
03-09-2020 09:32 AM
Thank you Cristian (I love your videos on INE by the way).
In the past, there was a limit. Is that no longer the case?
For all ASA models, the maximum number of DHCP client addresses varies depending on the license:
03-09-2020 10:14 AM
Hi,
I haven't seen you saying it's about the ASA. You are right, but that's not a technical restriction, it's a sales restriction :) And as far as i remember, it was only for the base model 5505.
Regards,
Cristian Matei.
03-09-2020 10:15 AM
I'm sorry, I should have mentioned this is for a 5525-X ASA.
03-09-2020 10:40 AM
sure i have not seen any limitation document on ASA for the DHCP Pool.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide