We are transitioning branch offices (bo) into to an ISP managed MPLS network. The bo will access the Internet through the headquarter's Internet access. Is there a way to configure a PIX to give DHCP IP addresses to the local hosts? Ideally the MPLS router would give dynamic IP addresses. The ISP manages the MPLS routers. We have no control of configuring the MPLS routers. The ISP will charge additional fee for DHCP service. Time is a factor, is there a fix to provising DHCP IP to hosts to the bo's LAN? We have Linksys unmanaged switches at the sites. Thanks.
You can configure a PIX/ASA to be a DHCP server, but from what I've seen, you enable it per interface and the DHCP pool has to be part of the same network for that particular interface. For example, if your inside interface is 192.168.1.1/24, then if you enable DHCP on the inside interface, you would have to configure a pool in the 192.168.1.0/24 range. Since you have multiple sites, I'm guessing each will have it's own subnet. If you have a semi decent switch at HQ, you could configure it for DHCP. I have a couple of 4507s that I have setup as DHCP server. If you don't, you may have to through up a Windows or Linux DHCP server at the HQ site. Is the ISP handling all the routing between sites? Also, if the DHCP server resides on a different subnet that the client requesting the IP address, the local router (where the client is attached) will have to have an ip-helper address to point it to the DHCP server.
The ISP handles the routing between the sites. All four branch offices have different IP schemes. 2 sites have dedicated Internet Access, the firewall provides DHCP Ip addresses. The 2 other sites require DHCP service. Can a PIX 501's outside interface be connected to the Eth interface of the MPLS router, and configure the PIX to allow all traffic IPs and open all ports into the inside 100 interface? The PIX would be configured to serve as DHCP server.
We are pleased to announce availability of Beta software for 16.6.3.
16.6.3 will be the second rebuild on the 16.6 release train targeted
towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are
looking for early feedback from customers befor...
Introduction Featured Speakers Luis Espejel is the Telecommunications
Manager of IENova, an Oil & Gas company. Currently he works with Cisco
IOS® and Cisco IOS XE platforms, and NX to some extent. He has also
worked as a Senior Engineer with the Routing P...
In this session you can learn more about Layer 3 multicast and the best
practices to identify possible threats and take security measures. It
provides an overview of basic multicast, the best security practices for
use of this technology, and recommendati...