Log in to ask questions, share your expertise, or stay connected to content you value. Don’t have a login? Learn how to become a member.
Hi, is it possible to setup the ssg5 as dhcp server for subnets not direclty connected to the ssg5?
All examples I found so far say nothing about it (and actually configuration I tried so far is not working).
Thanks for any help.
Hi,
Your question relates rather to the ability of the device in the middle to relay the dhcp requests. But if these requests are relayed as unicasts the ssg will not process them.
ok thank you.
The topology looks like this
|dhcp client| - |fw/router dhcp relay| - |ssg5 dhcp server|
Yes the ssg5 will receive the requestes as unicast, and when I understood correct, will not process them.
Yes, you understood this correctly.
As stated in the KB19962:
The ScreenOS firewall responds to only broadcast DHCP Discover messages. It does not address unicast DHCP request packets (mostly from Relay Agents). DHCP functionality is just an add-on provided on the firewall. It cannot act as an full fledge DHCP server. This is by design.