02-25-2004 03:10 AM - edited 02-21-2020 01:03 PM
I have a 3725 router as the end of the IPSec VPN and an 827 for the client end. Both with 12.3(6) IOS.
I established a IPSec VPN, and everything seems fine, I can use most application via the VPN like web, mail, ect...
I would like to use a DHCP server on the protected network end (the 3725 end) to assign address to host connected via the 827 router. I don't seem to get this working yet, even with the ip helper-address command. Can some one help me with this problem?
My config files can be made available.
Thanks
02-25-2004 05:22 PM
You'll need the "ip helper-address" on the inside interface of the 827. Your crypto access-list on the 827 will have to then include a line that has:
access-list 100 permit ip host <827 outside IP address> host
and on your 3725 you'll need the opposite ACL. The DHCP request forwarded by the 827 will have it's outside IP address as the source address, so this needs to be included in the packets that both routers will encrypt.
02-25-2004 11:40 PM
On the inside interface of the 827, the "ip helper-address" command to I put the subnat address of the DHCP or the host address like on the access-list?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide