DHCP relay through IPSec VPN IOS routers

Unanswered Question
Mar 23rd, 2007
User Badges:

How can I implement and is it possible DHCP relay between two routers with IPSec VPN.

From one site clients need IP address from DHCP server on the other site.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
aghaznavi Thu, 03/29/2007 - 06:52
User Badges:
  • Silver, 250 points or more

ip helper-address command to allow DHCP traffic over VPN. I found a configuration example to implement this command:


Try to apply this command on the same interface where crypto mpa is applied:

Router(config)#interface s0

Router(config-if)#crypto map mymap

Router(config-if)#ip helper-address 192.168.192.6



DHCP is sending a broadcast traffic and broadcast traffic is not supported over VPN. However, you may try to configure GRE over IPSec on your routers to implement this goal.


You may visit these links regarding GRE over IPSec:


http://cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a008014bcd7.shtml


http://cisco.com/en/US/tech/tk828/technologies_configuration_example09186a00801a5aa2.shtml


mljevakovic Sun, 04/01/2007 - 23:33
User Badges:

Is it possible to do it without GRE because I have only one Public IP address per site. What I know GRE requests additional IP addresses, am I right?

Actions

This Discussion