DHCP Server Configuration with Multiple Scopes



Setup:

Windows Server 2008: DHCP Server RRA
Scree OS Firewall: Enabling DHCP Relay Agent
Multiple VLANs

Procedure:

For testing purpose, we have taken 2 VLANs
192.168.2.0 / 21 (VLAN 2) & 192.168.50.0 /23 (VLAN 50)
The DHCP server IP Address is 192.168.2.254 and it will release dynamic addresses to VLAN 2 as well as VLAN 50.

Step 1 – Enable DHCP Server with Multiple Scopes

Enable the DHCP services and create the necessary scopes as shown in the figure below on the DHCP Server 192.168.2.254

 
Open Routing and Remote Access console.
Right click the server, and then click Configure and enable Routing and Remote Access.
On the welcome page to Routing and Remote Access setup wizard page, click next.
On the configuration page, select custom configuration, and then click next.
On the custom configuration page, select LAN routing, and then click next.
On the completing Routing and Remote Access setup wizard page, click finish.
In Routing and Remote Access warning dialog box, click yes to start the service.
On the remote access/VPN server page, click finish.
In the options of console tree, expand the server, expand IP routing, and then select general.
Right click general tab, and click the new routing protocol.
In the new routing protocol page, click the DHCP Relay Agent and click Ok.
Configuring a DHCP Relay Agent with the IP address of the DHCP server
Open Routing and Remote Access console.
In the options of console tree, select DHCP relay agent.
Right click the DHCP relay agent, click properties.
On general tab, server address field, type IP address of the DHCP server that you wish to forward DHCP request to, click add, then click Ok.
Enabling the DHCP Relay Agent on a Interface of Router
Open Routing and Remote Access console.
In the options of console tree, select DHCP relay agent.
Right click the DHCP relay agent, click new interface.
Select the interface on which you want to enable the DHCP relay agent, and then click Ok.
In the properties dialog box of DHCP relay agent general tab, make sure that relay DHCP packet is selected.
Configure the boot threshold (seconds) and hop count threshold, if needed, and then click Ok 
 

Step 3 – Enable DHCP Relay Agent on the Firewall (SreenOS)

Goto the Network > DHCP in the ScreenOS and edit the interface for which the relay agent needs to be enable. Configure the DHCP server address as the Relay Agent Server IP as shown in the figure below:
 

Step 4 – Test the Configuration


A Windows 7 client connected to the VLAN 50 is taken as shown in the figure below

Do and ipconfig /release /renew and see whether it receioves the IP address from the DHCP server.
It works for this test as shown in the figure below:


Client Side 


Server Side
 

Comments

Post a Comment

Popular posts from this blog

Wireless DPSK setup with Ruckus Zone Director

Image
Configure the AAA Server (Using local database howto is out of this scope) Log in to the zone director and configure the AAA Server from Configure > AAA Servers as shown in the figure below. Name: Give a name for the AAA Server for identification {jcua for this example} Type: Active Directory Global Catalog: {leave it un-check} IP Address: IP address of the domain controller Port: 389 {ldap port} Windows Domain Name: domain name {test.com for this example}   Configure the Hotspot Service Configure a Hotspot to authenticate the users before allowing the traffic from Configure > Hotspot Services as shown in the figure below. Name: Give a name for the hotspot service {JCU-Wireless-Provisioning for this example} Login Page: https://wireless.test.com/activate {or https://zonedirectorIP/activate} Start Page: I leave to redirect to the URL that the user intends to visit Authentication Server: The AAA server that we created {i.e., jcua} Accounting Server: none {out...
Read more

Access denied for user 'bacula'@'localhost' (using password: YES)

Image
While installing a test backup server (Bacula), I got the error "Access denied for user 'bacula'@'localhost' (using password: YES)" while connecting to the MySQL database. Root access was fine. Grant permission as well as the user password was correct and thus it took me quite some time to understand that though the user password was correct, it wasn't encrypted like the root when checked from Webmin.  Thus from mysql command, instead of - mysql> UPDATE mysql.user SET Password = 'baculauserpassword' WHERE user = 'bacula'; mysql> FLUSH PRIVILEGES; I change it too  mysql> UPDATE mysql.user SET Password = PASSWORD('baculauserpassword') WHERE user = 'bacula'; mysql> FLUSH PRIVILEGES; After getting the password encrypted, I can finally connect to the MySQL server and run the Bacula.
Read more

Operation could not be completed (error 0x00000709)

Image
We just had an upgrade of the printer infrastructure. New printers are installed, Canon Uniflow software are being upgraded as well as the existing drivers are being upgraded. Things went fine except for few users having issues like: Cannot set default printer Cannot print directly from Outlook client Thanks to the link  http://www.howtogeek.com/forum/topic/can-not-set-any-printer-as-default-printer  the issues were resolved following the steps there. The fix, which worked for me yesterday, is simple: Go to HKCU\Software\Microsoft\Windows NT\CurrentVersion\Windows\ -If the Windows key doesn't exist, create a new key; Then check for the following entry (or create it if it is not there) Name: Device Type: Reg_SZ (String Value) Value: winspool,Ne00 Should you be unable to save it, just make sure the user has Full (or special) access to the Windows key (by right-clicking on the key) After that I ran the "gpupdate /force" as the drivers were pushed using gr...
Read more