Enabling The Dhcp Server; C H A P T E R 10 Configuring Dhcp, Ddns, And Wccp Services - Cisco FirePOWER ASA 5500 series Configuration Manual
Security appliance command line
Hide thumbs
Also See for FirePOWER ASA 5500 series:
- Datasheet (20 pages) ,
- Configuration manual (1140 pages)
Table of Contents
Advertisement
Configuring a DHCP Server
Enabling the DHCP Server
The security appliance can act as a DHCP server. DHCP is a protocol that supplies network settings to
hosts including the host IP address, the default gateway, and a DNS server.
The security appliance DHCP server does not support BOOTP requests.
Note
In multiple context mode, you cannot enable the DHCP server or DHCP relay on an interface that is used
by more than one context.
You can configure a DHCP server on each interface of the security appliance. Each interface can have
its own pool of addresses to draw from. However the other DHCP settings, such as DNS servers, domain
name, options, ping timeout, and WINS servers, are configured globally and used by the DHCP server
on all interfaces.
You cannot configure a DHCP client or DHCP Relay services on an interface on which the server is
enabled. Additionally, DHCP clients must be directly connected to the interface on which the server is
enabled.
To enable the DHCP server on a given security appliance interface, perform the following steps:
Create a DHCP address pool. Enter the following command to define the address pool:
Step 1
hostname(config)# dhcpd address ip_address-ip_address interface_name
The security appliance assigns a client one of the addresses from this pool to use for a given length of time.
These addresses are the local, untranslated addresses for the directly connected network.
The address pool must be on the same subnet as the security appliance interface.
(Optional) To specify the IP address(es) of the DNS server(s) the client will use, enter the following
Step 2
command:
hostname(config)# dhcpd dns dns1 [dns2]
You can specify up to two DNS servers.
(Optional) To specify the IP address(es) of the WINS server(s) the client will use, enter the following
Step 3
command:
hostname(config)# dhcpd wins wins1 [wins2]
You can specify up to two WINS servers.
(Optional) To change the lease length to be granted to the client, enter the following command:
Step 4
hostname(config)# dhcpd lease lease_length
This lease equals the amount of time (in seconds) the client can use its allocated IP address before the
lease expires. Enter a value between 0 to 1,048,575. The default value is 3600 seconds.
Step 5
(Optional) To configure the domain name the client uses, enter the following command:
hostname(config)# dhcpd domain domain_name
(Optional) To configure the DHCP ping timeout value, enter the following command:
Step 6
hostname(config)# dhcpd ping_timeout milliseconds
To avoid address conflicts, the security appliance sends two ICMP ping packets to an address before
assigning that address to a DHCP client. This command specifies the timeout value for those packets.
Cisco Security Appliance Command Line Configuration Guide
10-2
Chapter 10
Configuring DHCP, DDNS, and WCCP Services
OL-10088-01
Advertisement
Table of Contents
Troubleshooting
