Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
477
Views
0
Helpful
4
Replies

Site to Site VPN

nofori1382
Level 1
Level 1

‎01-15-2015 06:22 PM

I have created a site to site vpn tunnel between the main office and one of our branch office. At the branch office I have configured the ASA 5505 to serve as a dhcp server. Clients at the branch office are able to ping and rdp into the the dns server and the dhcp server at the main office but when am trying to add a computer to the domain from the branch office its unable to do that.

Now I am wondering instead of configuring the ASA at the branch office as the dhcp server, I want to configure it to be a relay agent to receive IP address from the main office DHCP Server so I can add the computers to the domain.

 

Please help here if you have any step by step configuration method.

Labels:
0 Helpful
4 Replies 4

Karsten Iwen
VIP
VIP

‎01-15-2015 11:33 PM

Here is an example of a DHCP-relay on the ASA:

dhcprelay server 10.10.10.10 outside
dhcprelay enable inside
dhcprelay setroute inside

More con be found in the config-Guide:

http://www.cisco.com/c/en/us/td/docs/security/asa/asa84/configuration/guide/asa_84_cli_config/basic_dhcp.html#wp1226581

http://www.cisco.com/c/en/us/td/docs/security/asa/asa90/asdm70/configuration_guide/asdm_70_config/basic_dhcp.html#pgfId-1249374

0 Helpful

Richard Burts
Hall of Fame
Hall of Fame
In response to Karsten Iwen

‎01-17-2015 07:28 AM

Karsten has provided good information about DHCP relay on ASA. But I wonder if using a different DHCP server will really solve the problem. What is preventing joining the domain now?  Is it that the domain controller does not recognize the subnet as valid? Is there some other issue that prevents joining the domain?  It seems to me that you need to identify the current problem. Then you can figure whether a different DHCP server will resolve the problem. 

 

HTH

 

Rick

HTH

Rick
0 Helpful

nofori1382
Level 1
Level 1
In response to Richard Burts

‎01-17-2015 05:49 PM

Thank you Richard. I am able to ping the domain controller as well as remote desktop into the server but when I try joining it to the domain I am unable to do so. If I join the computer to the domain from the head office and send it to the branch office I am able to authenticate perfectly.

 

For now I feel its a Microsoft issue and I am going to contact them for help. I will let the community know what the out come will be.

0 Helpful

AllertGen
Level 3
Level 3
In response to nofori1382

‎01-18-2015 03:32 AM

Hello, nofori1382.

Maybe you have the same problem as me before. Try look at this: http://windowsitpro.com/networking/single-label-domain-dns-resolution

0 Helpful
Customers Also Viewed These Support Documents