cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
3959
Views
0
Helpful
6
Replies

Cisco ASA DHCP Server and Relay agent

Steve Block
Level 1
Level 1

Hi Guys,

 

Is it possible to allow DHCP Server on some of the interfaces/subinterfaces and DHCP relay agent on other subinterface on a Cisco ASA?

 

I have a Cisco ASA what is DHCP server for several vlans.

I need MAC address reservation on one. As ASA doesn't support this feature I decided to set on the my Cisco switch.

The switch is connected to the ASA (there is no DHCP server on this subinterface)

IP of the switch is on a different subinterface like MAC reservation (10.50.30.100 interface sun_devices).

When I wish to activate the DHCP relay agent I got the following error message:

 

asa01(config)#dhcprelay server 10.50.30.100 sun_devices
asa01(config)#dhcprelay setroute sun_admins
asa01(config)#dhcprelay timeout 60

asa01(config)# dhcprelay enable sun_admins
DHCPRA: can't enable DHCP Relay when DHCPD is running on any interface
       Use the 'no dhcpd enable <server_ifc>' command
       on any interface that has been enabled.
dhcprelay command failed

 

Many thanks!

 

 

 

 

1 Accepted Solution

Accepted Solutions

Ruben Cocheno
Spotlight
Spotlight

optional you can push all DHCP scopes for the switch and apply the dhcp relay on firewall interfaces
 

Tag me to follow up.
Please mark it as Helpful and/or Solution Accepted if that is the case. Thanks for making Engineering easy again.
Connect with me for more on Linkedin https://www.linkedin.com/in/rubencocheno/

View solution in original post

6 Replies 6

Ruben Cocheno
Spotlight
Spotlight

optional you can push all DHCP scopes for the switch and apply the dhcp relay on firewall interfaces
 

Tag me to follow up.
Please mark it as Helpful and/or Solution Accepted if that is the case. Thanks for making Engineering easy again.
Connect with me for more on Linkedin https://www.linkedin.com/in/rubencocheno/

Yes, that's an option, but I want to keep other DHCP servers on the ASA.

i guess you are running dhcp enable on the interface you are trying using relay. You need to delete first the scope/interface config regarding it. If it still not working check if for that version has caveats about it

Tag me to follow up.
Please mark it as Helpful and/or Solution Accepted if that is the case. Thanks for making Engineering easy again.
Connect with me for more on Linkedin https://www.linkedin.com/in/rubencocheno/

These are sub-interfaces of a physical interface.

ethernet 0/1.3 sun_devices

ethernet 0/1.123 sun_admins

ethernet 0/1.124 further vlans...

DHCP hasn't set to sun_devices and sun_admins, but enabled on the further VLANs.

Need I remove DHCP server from all sub-interfaces?

remove the pool and DHCP associated that particular interface and apply the dhcprelay command and the dhcprelay server

Tag me to follow up.
Please mark it as Helpful and/or Solution Accepted if that is the case. Thanks for making Engineering easy again.
Connect with me for more on Linkedin https://www.linkedin.com/in/rubencocheno/

I tried this suggestion, but didn't work. I think, if there is a dhcp server on the ASA there is no way to DHCP Relay on it. Finally I moved all of the DHCPs to the layer 3 switch.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: