Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
342
Views
7
Helpful
3
Replies

dhcp across two network

suthomas1
Level 6
Level 6

‎12-26-2013 08:32 AM - edited ‎03-07-2019 05:15 PM

Hi,

We are running into a problem with dhcp. Diagram is attached here.

portion on the left side belongs to Network A & right side is network B. These two networks are seperated by Firewall B.

Firewall B has minimal rules & permits traffic between the two Network A & B. On network B , 6506 does all routing.

The edge switch in Network B has users connected to it. But these users(vlan50) connected to this edge switch are actually belonging to Network A, they are physically attached there.

Layer 3 interface Vlan 50 - 172.16.50.0/24 is configured on the Firewall A & on its interface , dhcp relay is pointed to 172.16.70.10 ( dhcp server).

Firewall A does all routing for this portion in Network A.

Appropriate routing is in place on both sides. We have created vlan 50 ( layer 2 ) in Core 6506 in Network B.

We are trying to see if  these users (in vlan 50-172.16.50.0/24) can get an ip address via dhcp server from Network A.

This proves to be unsuccessful.

It will be really helpful if people can help us out.

Thanks in advance.

Labels:
Preview file
1807 KB
0 Helpful
3 Replies 3

John Blakley
VIP Alumni
VIP Alumni

‎12-26-2013 08:41 AM

Do you have a helper address configured on vlan 50's SVI on the 6506 on Network B? If not, it should be pointing to 172.16.70.10. You may have to allow udp destined for 0.0.0.0 255.255.255.255 for bootpc through the firewall for it to allow that traffic through.

HTH,
John

*** Please rate all useful posts ***

HTH, John *** Please rate all useful posts ***

suthomas1
Level 6
Level 6
In response to John Blakley

‎12-26-2013 08:56 AM

John, thanks for the reply.

Layer 3 for Vlan 50 - 172.16.50.0 /24 is configured on Firewall A . The 6506 only has vlan 50 in its layer 2 database.

Helper address/relay pointing to 172.16.70.10 is configured on Vlan 50 interface on Firewall A.

Both the firewalls have the broad rules which permit all traffic in between these two segment of network.

Appreciate all inputs.

0 Helpful

Abzal
Level 7
Level 7

‎12-26-2013 10:07 PM

Hi,

As John said you have to add on 6506 on network B ip helper under SVI VLAN 50 interface to make this work. Also is dhcp server accessible from network B?

Hope it will help.

Best regards,
Abzal

Best regards,
Abzal
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card