VPN Concentrator 3000 and DHCP problem

Unanswered Question
Nov 10th, 2008

Hi, I have a VPN concentrator in production and one in a lab running code: Version 4.7.2.L Jun 11 2007. Both are set up to use DHCP for remote VPN clients (software VPN). The problem is Cisco VPN clients don't pick up an IP address from the DHCP servers. The DHCP servers tested are a Cisco router and TFTPd32 server. With both of these I get the same error message:

63 11/06/2008 09:50:03.140 SEV=3 DHCPDBG/39 RPT=4

DHCP discover timeout: no response from polled servers

From the DHCP server (TFTPd32) I could get the following logged messages:

Rcvd DHCP Discover Msg for IP 0.0.0.0, Mac 00:03:A0:8A:36:88 [06/11 11:00:50.131]

DHCP: proposed address 126.7.1.1 [06/11 11:00:51.741]

Rcvd DHCP Discover Msg for IP 0.0.0.0, Mac 00:03:A0:8A:36:88 [06/11 11:00:51.944]

DHCP: proposed address 126.7.1.1 [06/11 11:00:53.460]

Rcvd DHCP Discover Msg for IP 0.0.0.0, Mac 00:03:A0:8A:36:88 [06/11 11:00:55.944]

DHCP: proposed address 126.7.1.1 [06/11 11:00:57.445]

Rcvd DHCP Discover Msg for IP 0.0.0.0, Mac 00:03:A0:8A:36:88 [06/11 11:01:03.945]

126.7.1.1 is out of the configured DHCP pool.

The client only gets an IP address from the Concentrator itself, if I select to use the local DHCP pool of IP addresses.

I have tried all combinations of DHCP services on the concentrator as a proxy and/or relay agent to no avail. Appreciate a quick reply

Many thanks

Sujohn

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Jagdeep Gambhir Mon, 11/10/2008 - 05:58

Sujohn,

If you check both DHCP and Address Pools under Configuration --> System --> Address Management --> Assignment --> the concentrator will read those options in order, top to bottom, and use the one it finds

a match with first. So if you specify DHCP and your DHCP server is active it will always

assign addresses via DHCP because that is the first match. It will never look at the

pools you've assigned.

Please let me know if you have a different set up.

Regards,

~JG

Do rate helpful posts

sujohnm Mon, 11/10/2008 - 07:51

JG,

I have tried it, but it doesn't work. I get the error message:

63 11/06/2008 09:50:03.140 SEV=3 DHCPDBG/39 RPT=4

DHCP discover timeout: no response from polled servers

although I get a message from the DHCP logs saying an IP address has been assigned:

Rcvd DHCP Discover Msg for IP 0.0.0.0, Mac 00:03:A0:8A:36:88 [06/11 11:00:50.131]

DHCP: proposed address 126.7.1.1 [06/11 11:00:51.741]

thanks

Sujohn

Jagdeep Gambhir Mon, 11/10/2008 - 08:54

What is the gateway on your DHCP server ? From conservatory can you ping dhcp ?

Regards,

~JG

Do rate helpful posts

Actions

This Discussion