Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

WLC DHCP Proxy Question

Hi there,

I have a question with respect to DHCP Proxy to an external DHCP server.

Is it possible to force the DHCP proxy to use the Management Interface as the source for all DHCP requests?

My Wireless setup has all the dynamic wireless VLAN's going straight into a "dirty firewall" which then allows internet access etc.

I therefore don't want to place my DHCP server alongside this firewall.

The management interface of the WLC is connected to our internal management network where there is a DHCP server already (behind a L3 router).

How can I setup the WLAN's and Interfaces so that when a client requests a DHCP address the WLC forwards it to the DHCP server on the management network via the management interface?


Hall of Fame Super Silver

Re: WLC DHCP Proxy Question

DHCP Proxy uses the VIP and not the management IP of the WLC. Is one of the WLC ports connected to your internal network and the other port connected to the FW? Again with DHCP Proxy enabled, traffic will flow to your internal DHCP server as long as you have all the dhcp server address configured on the interfaces and have ip helper-address setup on the L3 interfaces.

Here is a doc regarding DHCP Proxy:

*** Please rate helpful posts ***
New Member

Re: WLC DHCP Proxy Question

What I have is a WLC 5508 with:

Port 1 facing my "corporate" network

Port 2 facing my "internet" firewall

The Access Points are on the "corporate" network and use CAPWAP to an AP Manager interface defined on Port 1.

Guest WLAN's and non corporate WLAN's exit on a VLAN on port 2 straight into the internet firewall.

I don't therefore want to forward my DHCP packet out the VIP of the VLAN as it hits the Internet firewall and goes no-where. I want to send DHCP packets out of the management interface and back into the Corporate network where there are existing DHCP servers.