I'm having a little trouble trying to get my client vpn to use a dhcp server instead of the ip pool. When I use the IP pool command everything works great, but when I use the dhcp command I get an error on the client side saying no private IP address was assigned by the peer.
Here is my config.
aaa authentication login VPNCLIENT_AUTHEN group radius local
aaa authorization network VPNCLIENT_AUTHOR local
crypto isakmp client configuration group VPNCLIENT_GROUP
dns 172.25.128.43 172.25.65.43
dhcp server 172.25.0.27
dhcp giaddr 172.25.205.1
dhcp timeout 10
# pool VPNCLIENT_IPPOOL
crypto isakmp profile ISAKMP_PROFILE
match identity group VPNCLIENT_GROUP
client authentication list VPNCLIENT_AUTHEN
isakmp authorization list VPNCLIENT_AUTHOR
client configuration address respond
crypto dynamic-map DYN_MAP 1020
set transform-set ESP-AES-256-SHA
set isakmp-profile ISAKMP_PROFILE
crypto map HUB_CRYPTO_MAP 6005 ipsec-isakmp dynamic DYN_MAP
ip local pool VPNCLIENT_IPPOOL 172.25.205.25 172.25.205.250
I can see the dhcp request and offer on my dhcp server but nothing gets to the client. When I use a pool I can ping the dhcp server which makes me think the routes are okay. Does anyone have any ideas.
You need the giaddr under the EasyVPN server configuration. Try adding the loopback to your switch and then test again. If using an iVRF, make sure that the loopback is in the same VRF as the interface facing the server.