Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
872
Views
0
Helpful
5
Replies

DHCP server problem

Go to solution
devhunjan5
Level 1
Level 1

‎02-02-2017 09:06 PM - edited ‎03-08-2019 09:10 AM

Hi everyone,I am connected in a lan environment and my default gateway is firewall and i want that the dynamic address I get,I get from the firewall.

but in between firewall and my system  there is a wireless router which also serves as a dhcp server for wireless client.now whrn I asked for ip address from dhcp server, I get the address from the router not from the firewall.

Is there any way so that I can bypass the router and get the IP address from the firewall instead of the router.

cant bind the mac address with the firewall as there are many users and cant bind for each one as it is time consuming.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
paul driver
VIP
VIP

‎02-03-2017 01:51 AM

Hello

in between firewall and my system  there is a wireless router

Do you mean your lan switch(s) are attached to the WLAN AP or is this AP just on the same segment.

You can try and set a mac and/or ip acl to drop any DHCP traffic originating from the base mac address of the AP for any particular vlans.

Example:
AP dhcp server
mac address A111.1111.1111
1.1.1.1/24

Lan subnet vlan10
10.10.10.0/24

mac address-table static A111.1111.1111 vlan 10 drop

or

ip access-list extended STAN_in
deny   udp 10.10.10.0 0.0.0.255 eq 67 host 1.1.1.1 eq 68
deny   udp host 1.1.1.1 eq 68 any eq 67
permit ip any any

res
Paul


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

View solution in original post

0 Helpful
5 Replies 5

Go to solution
Philip D'Ath
VIP Alumni
VIP Alumni

‎02-02-2017 11:34 PM

Turned off the DHCP server on the wireless router.

0 Helpful

Go to solution
devhunjan5
Level 1
Level 1
In response to Philip D'Ath

‎02-03-2017 12:07 AM

I cant,as the router provides IP addresses to mobile users.

0 Helpful

Go to solution
Georg Pauwen
VIP
VIP
In response to devhunjan5

‎02-03-2017 12:27 AM

Hello,

are both the LAN and wireless clients in the same IP address range ? Is there a layer 3 interface (SVI) between the LAN and the firewall ? If so, use the 'ip helper-address' command on that layer 3 interface, with the IP address being that of your firewall.

If that is not an option for you, post the config of your Cisco device...

0 Helpful

Go to solution
paul driver
VIP
VIP

‎02-03-2017 01:51 AM

Hello

in between firewall and my system  there is a wireless router

Do you mean your lan switch(s) are attached to the WLAN AP or is this AP just on the same segment.

You can try and set a mac and/or ip acl to drop any DHCP traffic originating from the base mac address of the AP for any particular vlans.

Example:
AP dhcp server
mac address A111.1111.1111
1.1.1.1/24

Lan subnet vlan10
10.10.10.0/24

mac address-table static A111.1111.1111 vlan 10 drop

or

ip access-list extended STAN_in
deny   udp 10.10.10.0 0.0.0.255 eq 67 host 1.1.1.1 eq 68
deny   udp host 1.1.1.1 eq 68 any eq 67
permit ip any any

res
Paul


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful

Go to solution
devhunjan5
Level 1
Level 1

‎02-03-2017 04:27 AM

yeah that helps me a lot.thanks I did the same and problem solved.

now I am getting the IP address from my intended DHCP server.

0 Helpful
Customers Also Viewed These Support Documents