Ashraf Hozayen wrote: > > Hi, > Use the dhcpd enable command to turn on DHCP daemon on PIX ,
That doesn't turn it into a DHCP relay agent, though, does it? I think you need a router for that. A DHCP relay agent forwards DHCP broadcasts to a server not on the local LAN. It's accomplished on a router by configuring an IP helper address on the incoming interface where the clients reside. The IP helper address points to the server. The router than forwards the UDP broadcasts to port 67 over to the server. This solves the problem where DHCP clients reside on a different LAN from the DHCP server. The problem that you are addressing is a different problem. Priscilla > The PIX Firewall DHCP client can only be enabled on the outside > interface. > DHCP client support within the PIX Firewall is designed for use > within a small office, home office (SOHO) environment using a > PIX Firewall that is directly connected to a DSL or cable modem > that supports the DHCP server function. > > > > > > Ashraf Hozayen > Network Engineer > CCNA,CCNP ,CCIE & MCP > Cisco Security Specialist 1 > VAS & Network IT Dept. > Vodafone Egypt > Direct No: +20-2-529-2824 > Fax No: +20-2-5292-499 > Cellular No : +20-105-372-020 > E-mail: [EMAIL PROTECTED] > > > -----Original Message----- > From: Osama Kamal [mailto:OKamal@;Mobinil.com] > Sent: 17 October 2002 09:11 AM > To: [EMAIL PROTECTED] > Subject: PIX as a DHCP relay agent [7:55785] > > 2 questions: > > Can the PIX work as a DHCP relay agent? > > What are the ports required to be opened on the pix to allow > DHCP relay > agent traffic to pass through? > > > > Thanks > > > > > > > ******* > Important > Confidentiality: This communication is intended for the above > named person > and is confidential and/or legally privileged any opinion > expressed in this > communication are not necessarily those of the Egyptian company > for Mobile > Services (MobiNiL). If it has come to you in error you must > take no action > based on it, nor must you copy or show it to anyone: please > delete/destroy > and inform the sender immediately. > No Responsibility: MobiNiL is not responsible for any > political, religious, > racial or partisan opinion in any correspondence conducted by > its domain > users. Therefore, any such opinion expressed, whether > explicitly or > implicitly, in any said correspondence is not to be interpreted > as that of > MobiNiL. > Monitoring / Viruses: MobiNiL may monitor all incoming & > outgoing e-mails in > line with current legislation. Although we have taken steps to > ensure that > this e-mail and attachments are free from any Virus, we advise > that in > keeping with good computing practice the recepient should > ensure they are > actuallyvirus free. > The Egyptian Company for Mobile Services (MobiNiL) > www.mobinil.com > > The World Trade Center: 1191 Corniche El Nil, Boulaq - Cairo - > Egypt > Telephone: +20 2 574 - 7000 or + 20 12 320 - 0000 > Fax: +20 2 574 - 7111 or +20 12 320- 7111 > ******* > > Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=55895&t=55785 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
