cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
938
Views
0
Helpful
3
Replies

VPN Concentrator 3000 and DHCP problem

sujohnm
Level 1
Level 1

Hi, I have a VPN concentrator in production and one in a lab running code: Version 4.7.2.L Jun 11 2007. Both are set up to use DHCP for remote VPN clients (software VPN). The problem is Cisco VPN clients don't pick up an IP address from the DHCP servers. The DHCP servers tested are a Cisco router and TFTPd32 server. With both of these I get the same error message:

63 11/06/2008 09:50:03.140 SEV=3 DHCPDBG/39 RPT=4

DHCP discover timeout: no response from polled servers

From the DHCP server (TFTPd32) I could get the following logged messages:

Rcvd DHCP Discover Msg for IP 0.0.0.0, Mac 00:03:A0:8A:36:88 [06/11 11:00:50.131]

DHCP: proposed address 126.7.1.1 [06/11 11:00:51.741]

Rcvd DHCP Discover Msg for IP 0.0.0.0, Mac 00:03:A0:8A:36:88 [06/11 11:00:51.944]

DHCP: proposed address 126.7.1.1 [06/11 11:00:53.460]

Rcvd DHCP Discover Msg for IP 0.0.0.0, Mac 00:03:A0:8A:36:88 [06/11 11:00:55.944]

DHCP: proposed address 126.7.1.1 [06/11 11:00:57.445]

Rcvd DHCP Discover Msg for IP 0.0.0.0, Mac 00:03:A0:8A:36:88 [06/11 11:01:03.945]

126.7.1.1 is out of the configured DHCP pool.

The client only gets an IP address from the Concentrator itself, if I select to use the local DHCP pool of IP addresses.

I have tried all combinations of DHCP services on the concentrator as a proxy and/or relay agent to no avail. Appreciate a quick reply

Many thanks

Sujohn

3 Replies 3

Jagdeep Gambhir
Level 10
Level 10

Sujohn,

If you check both DHCP and Address Pools under Configuration --> System --> Address Management --> Assignment --> the concentrator will read those options in order, top to bottom, and use the one it finds

a match with first. So if you specify DHCP and your DHCP server is active it will always

assign addresses via DHCP because that is the first match. It will never look at the

pools you've assigned.

Please let me know if you have a different set up.

Regards,

~JG

Do rate helpful posts

JG,

I have tried it, but it doesn't work. I get the error message:

63 11/06/2008 09:50:03.140 SEV=3 DHCPDBG/39 RPT=4

DHCP discover timeout: no response from polled servers

although I get a message from the DHCP logs saying an IP address has been assigned:

Rcvd DHCP Discover Msg for IP 0.0.0.0, Mac 00:03:A0:8A:36:88 [06/11 11:00:50.131]

DHCP: proposed address 126.7.1.1 [06/11 11:00:51.741]

thanks

Sujohn

What is the gateway on your DHCP server ? From conservatory can you ping dhcp ?

Regards,

~JG

Do rate helpful posts

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: