Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
507
Views
0
Helpful
4
Replies

Configuring PIX to allow DHCPRelay Agent

raun.williams
Level 3
Level 3

‎11-15-2007 07:25 AM - edited ‎03-11-2019 04:31 AM

I'm attempting to pass IP's from my pix501 (which is the dhcp server) to clients on the wireless lan controller. The controller acts a dhcp relay agent and I get this in my pix debug:

DHCPD: DHCPDISCOVER received from client 0100.18de.19ab.b9 through relay 192.168

.83.253.

, packet discarded

What can I do to force the pix to allow this through and reply with an IP for the client?

Thanks,

Raun

1 person had this problem
Labels:
0 Helpful
4 Replies 4

irisrios
Level 6
Level 6

‎11-21-2007 12:03 PM

On the controller you would normally associate an interface to a WLAN. While creating an interface that corresponds to the WLAN you have an option to specify DHCP server . Configure PIX as a DHCP server and see if this works.

0 Helpful

shensimpson
Level 1
Level 1
In response to irisrios

‎02-06-2014 07:18 AM

Hi,

I am having the same issue, just wondering if anyone has found a solution.  I am trying to configure an Alcatel Wireless controller to use a PIX firewall.  Wireless clients are not able to obtain an ip address via DHCP.  The PIX reports:

DHCPD: DHCPDISCOVER received from client 0100.1302.5e8f.50 through relay 192.168.10.2

, packet discarded

Notice that the client Mac address is too long  "01" is being added to the beginning.  I have verifified that the Alcatel controller works when connected to a "Linksys" broadband router.

I would greatly appreciate any help you can offer.

Shen

0 Helpful

Jouni Forss
VIP Alumni
VIP Alumni
In response to shensimpson

‎02-06-2014 02:28 PM

Hi,

To my understanding no Cisco firewall model will support acting as a DHCP server for hosts which DHCP messages are relayed by another device in between the client and the firewall. They would only be able to act as a DHCP server to a directly connected network or relay DHCP messages from a directly connected hosts to a server behind another interface of the same firewall.

- Jouni

0 Helpful

shensimpson
Level 1
Level 1
In response to Jouni Forss

‎02-07-2014 07:12 AM

Yeah that's the conclusion I came to as well.  From the Cisco PIX command reference:

"The PIX Firewall DHCP server daemon does not support clients that are not directly connected to a

firewall interface"

Thanks for your help!

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card