Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
7224
Views
0
Helpful
7
Replies

ASA not giving out DHCP to clients, only DHCP discovery packet visible

John Peterson
Level 1
Level 1

‎05-04-2012 10:02 AM - edited ‎03-11-2019 04:02 PM

My ASA 5505 has stopped giving out DHCP address to my machines.

Everything was working fine and nothing has changed in the network. I've reloaded the firewall and clear all DHCP on the firewall I've even re-entered the cmd on the ASA.

I'm able to staticlly assigned address to the clients and all is way. When I do a DHCP debug on the ASA I don't see any events relating to the DHCP service apart from checking for lease expiry.

I've also tried to plug a machine straight into the ASA and no result. I finally did a packet capture and I am seeing the client machine sending out a DHCP discover packet and nothing else is responding.

My ASA config is:

dhcpd address 192.168.3.10-192.168.3.33 inside

dhcpd dns 8.8.4.4 interface inside

dhcpd option 3 ip 192.168.3.1 interface inside

dhcpd enable inside

Any help would be appreciated.

.

Labels:
0 Helpful
7 Replies 7

mvsheik123
Level 7
Level 7

‎05-04-2012 12:35 PM

Hi John,

Check if dhcp daemon is running on the ASA. Use Show process or filter as below....

Show processes | inc dhcp

Show processes | inc DHCPD

If dhcp daemon not running, then as you already retarted the ASA, try different OS.

hth

MS

0 Helpful

John Peterson
Level 1
Level 1
In response to mvsheik123

‎05-04-2012 03:55 PM

Hey,

I've checked the ASA and the dhcp deamon is running:

Router# Show processes | inc dhcp

Mwe 081ca8be d8b09ed4 09e31bac          0 d8b06090 15240/16384 dhcp_daemon

Router# Show processes | inc DHCPD

Mwe 081c8cd1 d81cd3b4 09e31bac          8 d81cb510 7712/8192 DHCPD Timer

Router#

Also it was working before and how stopped working, but nothing has changed?

0 Helpful

mvsheik123
Level 7
Level 7
In response to John Peterson

‎05-04-2012 04:38 PM

I don't think you see any output for this, but try 'show dhcpd bindigs'. If you see any entries, then clear them and see if that works (the reload rules out any 'clear' though). There should be couple of other processes for 2nd command output when clients get IP addresses. Try changing OS.

Thx

MS

0 Helpful

John Peterson
Level 1
Level 1
In response to mvsheik123

‎05-05-2012 12:35 AM

Nope there are not DHCP bindings.

The problem is I don't have access to anthor OS for the ASA, therefore changing the OS is not a option. I am accessing it remotly, I am not able to reload the entire router and then reload there startup-config as I will loose connection.

0 Helpful

John Peterson
Level 1
Level 1
In response to John Peterson

‎05-08-2012 01:39 PM

Ok, this is really strange.

I have just configred a site to site VPN which has somehow made my ASA give out DHCP,

0 Helpful

Dennis Mink
VIP Alumni
VIP Alumni
In response to John Peterson

‎05-08-2012 09:20 PM

have you run debug dhcpd to debug the dhcp server on the ASA, and/or check the log?

Please remember to rate useful posts, by clicking on the stars below.

0 Helpful

mvsheik123
Level 7
Level 7
In response to John Peterson

‎05-09-2012 01:02 PM

Glad to hear that but totally strange .

Thx

MS

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card