• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

dhcp between two internal

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA 2006 Firewall] >> General >> dhcp between two internal Page: [1]
Login
Message << Older Topic   Newer Topic >>
dhcp between two internal - 24.Apr.2009 4:43:58 AM   
etora

 

Posts: 33
Joined: 15.Apr.2009
Status: offline
hi
its my first eviroment with isa
i read couple of documents and forum post about my problem but cant find what to properly do.
I have isa 2006 3 nic's: (test lab on hyperv)
1) external - some ip
2) lan one (range 0.0 to 0.255)- nic 192.168.0.4   - in this lan is AD server with DHCP (ip  0.1)

3) lan two (range 1.0 to 1.255) - nic 192.168.1.2   - in this lan is xp (ip 1.3)

in this case for testing i create  roules
allow - outband - lan1 - to lan2 - all users
allow - outband - lan2 - to lan3 - all users

and all communication between DC and XP is fine.

but when on 1.3 XP i change ip config to request ip from DHCP (192.168.0.1) it doesn't work, client gets apipa IP and then the rules
block communication : logs
dest. ip 169.254.255.255 port 137 client ip 169.254.183.126 DENIED connection with empty rule
which is obvious this ip isn't in allow roules and nic range

lan1 - to -> lan2  is set to "route"
lan2 - to -> lan1  is set to "route"


1) how properly config this to let client getting ip from dhcp?allowing broadcast
2) how set dhcp server (on 0.1 ip ) configure to give clients on second network ip from range 192.168.1.x (scope is added to dhcp)


some documents? links?
Thank You in advance
Post #: 1
RE: dhcp between two internal - 24.Apr.2009 7:12:34 AM   
mahmovic

 

Posts: 11
Joined: 6.May2008
Status: offline
Is there any good reason to build network configuration like this???

Maby you should consider using Cisco ASA if you want to filter traffic between VLAN`s.

You try to use ISA as router, wich is not.
But just for fun, try configuring server publishing rules pointing to DHCP server????? And check ISA system policy rules.... I have no better idea, first time to see something like this....

Best Regards
Muhamed Ahmovic

(in reply to etora)
Post #: 2
RE: dhcp between two internal - 24.Apr.2009 8:29:08 AM   
etora

 

Posts: 33
Joined: 15.Apr.2009
Status: offline
strange answer for me because this config is based on 3-leg but in this case in dmz lan is installed dhcp server, or for exampe its 3-leg with dmz and two internal lan (one for users and one for servers) and 4lan for dmz.
as i know in this config isa take the routing.reason is to protect servers from useres lan and from internet and to publish some services in dmz.

What is wrong in in?
So back to my post:
what i find so far is that i need do configure DHCP relay agent on this ISA but still don't now can i install RRAS on this box(sbs2003 with isa 2006)  to config this  dhcp relay.

am i right? any advice?

(in reply to mahmovic)
Post #: 3
RE: dhcp between two internal - 24.Apr.2009 3:03:59 PM   
paulo.oliveira

 

Posts: 3472
Joined: 3.Jan.2008
From: Amazon, Brazil
Status: offline
Hi,

forget about put ASA . This article is what you need: Enabling DHCP Relay for DMZ Segments

Regards,
Paulo Oliveira.

(in reply to etora)
Post #: 4
RE: dhcp between two internal - 24.Apr.2009 7:05:03 PM   
etora

 

Posts: 33
Joined: 15.Apr.2009
Status: offline
thank You so much :-)
i was searching this site with query "dhcp broadcast" and that is why i can't find this tutorial.
Now its working as expected.

(in reply to paulo.oliveira)
Post #: 5
RE: dhcp between two internal - 28.Apr.2009 8:50:14 AM   
paulo.oliveira

 

Posts: 3472
Joined: 3.Jan.2008
From: Amazon, Brazil
Status: offline
Hi,

no probs. Glad I can help.

Regards,
Paulo Oliveira.

(in reply to etora)
Post #: 6

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA 2006 Firewall] >> General >> dhcp between two internal Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts