09-03-2020 07:03 AM
I am doing a network restructure and supposed to enable Inter-VLAN routing at the ASA and at the same time configure a DHCP server for each subinterfaces for the host in the VLAN to obtain IPs from the ASA. Unfortunately, it seems the trunking functionality on SG200 isn't that good for being web-based and also the hosts on the VLAN aren't able to get IP from ASA. SG200 doesn't have the "ip-helper command or option" to point to the DHCP server. Kindly assist on the resolution for this Network restructure. Find the configs on attached files
Subinterface Configuration
DHCP server pool on subinterface
Switch Trunk on GE30 and Access port for test is GE29
Kindly Assist a way out on this.
09-03-2020 07:46 AM
Hello,
the SG200 doesn't need a helper-address, if the first layer 3 interface is a (sub) interface on the ASA. Post the running configuration of the ASA.
09-03-2020 09:48 AM
Subinterface Configuration on ASA
interface Ethernet0/5.10
vlan 10
nameif TestVLAN10
security-level 100
ip address 192.168.2.1 255.255.255.0
dhcpd address 192.168.2.100-192.168.2.150 TestVLAN10
dhcpd enable TestVLAN10
09-03-2020 11:29 AM
Hello,
the ASA DHCP configuration looks by the book. Is the SG200 in Layer 2 system mode ?
09-03-2020 12:20 PM
Yes the SG200-50P is in Layer 2 mode. I this setup, I am using ASA 5512 for inter-vlan routing, some trying to configure something like "Router-on-stick" in this case now "Firewall-on-Stick". Remember the firewall is in Router mode too.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide