ASA 5520 8.2(2) DMZ DHCP server broken vista/win7/mac

Unanswered Question
Apr 29th, 2010

Friday I upgraded my asa to software 8.2(2).  I found out monday that users running anything other than windows XP, can no longer obtain a DHCP address my ASA.  While trying to obtain a DHCP address a box pops up saying "There is an IP Address conflict" and it obtains a bad network address such as 169.254.4.X.  It should be pulling down a 172.16.32.X address.

I have a guest wireless network that belongs to the DMZ.  The asa acts as the dhcp server & dmz router/endpoint.

Has anyone else experienced this problem?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
ksuchewie Thu, 04/29/2010 - 08:14

I'm not sure if this is part of the problem, but I found this in my log.

1Apr 29 201009:55:15106021169.254.4.101169.254.255.255Deny UDP reverse path check from to on interface DMZ

the address is the bad address on my test machine when it cannot obtain a good DHCP address.

Jennifer Halim Sat, 05/01/2010 - 04:54

Can you double check if the DHCP server configuration is correctly configured? ie: all configuration still exists after the upgrade?

ksuchewie Mon, 05/03/2010 - 08:58

TAC was able to help me fix this.

We had to add this to my config:

sysopt noproxyarp dMZ


This Discussion