DHCP relay through IPSec VPN IOS routers

Unanswered Question
Mar 23rd, 2007

How can I implement and is it possible DHCP relay between two routers with IPSec VPN.

From one site clients need IP address from DHCP server on the other site.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
aghaznavi Thu, 03/29/2007 - 06:52

ip helper-address command to allow DHCP traffic over VPN. I found a configuration example to implement this command:

Try to apply this command on the same interface where crypto mpa is applied:

Router(config)#interface s0

Router(config-if)#crypto map mymap

Router(config-if)#ip helper-address 192.168.192.6

DHCP is sending a broadcast traffic and broadcast traffic is not supported over VPN. However, you may try to configure GRE over IPSec on your routers to implement this goal.

You may visit these links regarding GRE over IPSec:

http://cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a008014bcd7.shtml

http://cisco.com/en/US/tech/tk828/technologies_configuration_example09186a00801a5aa2.shtml

mljevakovic Sun, 04/01/2007 - 23:33

Is it possible to do it without GRE because I have only one Public IP address per site. What I know GRE requests additional IP addresses, am I right?

Actions

This Discussion