We're working on this as well. We opened up access for BOOTP in the Unauthenticated Role and use a helper address on the trusted VLAN for DHCP. We're just fighting this both for Ghost and Mac Remote Desktop. Simply adding a helper address for the Mac server fixed the latter issue, though. I start fighting Ghost-casting this week...
- Sean ---- Sean Hennessey Networking and Information Security Systems Administrator The University of Portland -----Original Message----- From: Cisco Clean Access Users and Administrators [mailto:[EMAIL PROTECTED] On Behalf Of Tim Cantin Sent: Wednesday, May 14, 2008 11:47 AM To: [email protected] Subject: Re: BOOTP in Real-IP Gateway with CAS as DHCP server Let me guess, you're using Ghost? Same problem here. We did a packet trace, and the CAS answers the DOS-based client but the client doesn't pay anby attention. -Tim --- Tim Cantin, Senior Network Engineer Wellesley College, IS/Technology Infrastructure Group 223 Simpson Hall East, 106 Central Street Wellesley, Massachusetts 02481-8203 http://www.wellesley.edu/~tcantin/ phone: (781)283-3520 fax: (781)283-3682 -----Original Message----- From: Cisco Clean Access Users and Administrators [mailto:[EMAIL PROTECTED] On Behalf Of Jason Meador Sent: Wednesday, May 14, 2008 2:29 PM To: [email protected] Subject: BOOTP in Real-IP Gateway with CAS as DHCP server Hello - We're running into a problem trying to get our public workstations to re-image. Packet captures show the workstation making a discover, the CAS DHCP server making an offer, but nothing past there, no Request of ACK packet is ever created. We're believing this to be because the source IP of the offer is from the untrusted IP of the CAS. When we insert another DHCP server onto the subnet, the process works just fine. We are currently building another CAS pair to test as a DHCP relay agent, but want to know if anyone has BOOTP working through the CAS with the CAS working as the DHCP server. We are running 4.1.3 on our NAC devices, and I have enabled BOOTP in the DHCP server as a global option. Jason Meador Network Engineer Santa Clara University 408-551-1847 (desk) [EMAIL PROTECTED]
