10-26-2007 09:22 PM - edited 03-03-2019 05:28 AM
Dear
I have issue with my network.
Actuallty I have 6500 Switch with Firewall Moduler. and connected to DHCP Server <Mirosoft Version>. And the VLAN 10. is behind the firewall and from there connected to DHCP Server. WHen the user try to get IP address from DHCP they con't. But when we change the vlan 109 its working fine. After I allowed in firewall all the traffic for the server. DHCP can sea the request but cant provide IP address.
10-26-2007 11:40 PM
What is the Gateway for the VLAN, the FWSM or the MSFC and where is the DHCP located
If it is the FWSM, then you would need to allow udp port 67 & 68 from any source (remember DHCP request soruce address is 0.0.0.0)
Also if the DHCP is on a seperate segment, you need to configure a DHCP relay agent with the help of ip helper-address
HTH
Narayan
please rate all posts
10-26-2007 11:50 PM
Thank you For replay
The connectivity like:
Core_SW_6500 + Firewall Module--->Dump Switch--->DHCP Server
- And the port 67&68 from any source is enabled.
- The DHCP IP helper address configured.
- The DG for VLAN is the CORE.
THe last thing found the VLAN10 its routed to Firewall for the DHCP connected to VLAN10 the DHCP can sea the request but not give IP address. But when we configure new vlan109 and is direct to DHCP without routed to firewall working fine.
10-27-2007 12:00 AM
In this case, th switch would send a unicast DHCP message with the VLAN IP address as the source towards the DHCP server.
Make sure you have allowed the traffic both ways from the SVI towards the DHCP and the DHCP server towards the SVI adddress.
HTH
Narayan
10-27-2007 12:02 AM
Thanks Alot
Its allowed already.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide