Move DHCP off CISCO PIX to Winserv 2003

October 8, 2010 at 09:26:27
Specs: Windows 2003
I currently have DHCP residing on a CISCO PIX and I need to move it to a Windows Server 2003. I disabled DHCP on the PIX, and tried relocating it to the Server and the machines on the network would come up with limited or no connectivity when looking for a DHCP address. Any help would be appreciated!

See More: Move DHCP off CISCO PIX to Winserv 2003

Report •

#1
October 8, 2010 at 09:34:04
"tried relocating it to the Server "

Mind sharing with us exactly what you tried to do? I don't see the word "authorize" in your description. Might want to list the tcp/ip dhcp scope.


Report •

#2
October 8, 2010 at 09:57:36
Hello, and tahnk you for replying. I have the scope 192.168.186.1-254 on the CISCO PIX. I disabled DHCP on the PIX and cleared the Addresses. I created the same scope on the Windows server through the wizard that opens when doing so. here are the IP addresses that are used on our net:

DHCP range 192.168.186.1-254
Router IP: 192.168.178.94
DNS: 192.168.177.195, 192.168.177.96
WINS: 192.168.177.99

I activated the scope at the end of the wizard and made sure it was suthorized in DHCP itself.


Report •

#3
October 8, 2010 at 11:10:29
what subnet mask are you using?

the dhcp scope is not in the router/server or wins subnets
what is up with three different subnets?

xxx.xxx.177.x
xxx.xxx.186.x
xxx.xxx.178.x

Do you have additional routers between subnets?


Report •

Related Solutions

#4
October 8, 2010 at 11:43:21
Hello, and thank you again for the reply. I am using 255.255.240.0.

I am actually trying to perform cleanup duty on our DHCP. My boss moved it FROM WinServ once upon a time to the PIX for some reason. I am trying to get it back over to Windows so I can integrate it with a NAC.

We have a Cisco 3560 (178.94) that is doing all of the routing in the building, and that was all defined by my boss. DHCP worked fine before it moved to the pix, he just wanted to remove it from the server's responsibilities.

There are no other routers involved! Thanks again for your help!


Report •

#5
October 8, 2010 at 12:54:15
I think I got it now. it did not like the Mask I was using. It is up and working correctly, just need to have a few machines run their lease out!@ Thank you for your help!

Report •

#6
October 8, 2010 at 12:54:44
Does your boss realize with supernetting he has created one giant broadcast domain? Most likely not. With that subnet mask you have
192.160.176.0 - 192.160.191.255 with 4096 hosts possible.

How many ip devices do you have?

It would appear all the router is doing for you is giving you internet access.

This is important to note since dhcp would not go across the router unless the router was configured with a dhcp helper [dhcp relay].

Sounds like you did everything right. Question now is why was there no response to the workstations request for an ip address.

Any clues in the event viewer logs? Next step would be to enable the dhcp server again and then load wireshark to review the traffic to see where the break is.

All of these steps look familiar?
http://www.alanphipps.com/WindowsAd...


Report •

#7
October 8, 2010 at 13:06:53
We are filling up almost all of those IPs on our network. I am not a network expert at all; I work with the system side.

Report •

#8
October 8, 2010 at 15:01:10
It is time for vlans and managed switches. Your network will drag with 4000 ip devices all talking on the same subnet.

Report •

Ask Question