Configuring a permanant DHCP reservation on a Cisco ASA/PIX
17 comments
Comment from: Hellbent [Visitor]
Comment from: Dan [Visitor]
Hi Hellbent,
Did your Host B get then another IP or does the ASA fall in a Loop?
Regards, Dan.
That´s also does not work for me :
#sh running-config arp arp lan_corp 10.11.254.180 4c80.933c.faff
sh dhcpd binding all | include ff
10.11.254.151 014c.8093.3cfa.ff 3420 seconds Automatic
I have set the below arp related configs : arp lan_corp 10.11.254.180 4c80.933c.faff arp timeout 14400 no arp permit-nonconnected
Have also tried with the permit-nonconnected enabled but nothing.
The version of the ASA software is 9.1(3)
Comment from: Ryan [Visitor]
Comment from: mick [Visitor]
Ive been looking for this solution myself. I also tested this and it doesnt seem to work.
test config: arp inside 10.6.0.75 001b.38be.c7fa dhcpd address 10.6.0.70-10.6.0.80 inside
connect the laptop and look at dhcp binding and arp: show dhcpd binding IP address Client Identifier
10.6.0.70 0100.1b38.bec7.fa
show arp
inside 10.6.0.70 001b.38be.c7fa 517
inside 10.6.0.75 001b.38be.c7fa -
the firewall shows the reserved arp but still issues the laptop the first ip from the dhcp pool.
Comment from: Peter Dornauer [Visitor]
Comment from: Marr [Visitor]
This will work,but you have to set you dhcp scope high and give static IP addresses to your devices from below the dhcp scope. For example:
dhcpd address 192.168.1.50-192.168.1.100 inside
Give your routers, switches, and host static IP addresses in the range of: 192.168.1.1 - 192.168.1.49
arp inside 192.168.1.10 0c1b.ae43.bd21 arp inside 192.168.1.11 0c1b.ae43.bd22 arp inside 192.168.1.12 0c1b.ae43.bd23 etc……
Comment from: EINAR HONEGGER THOME [Visitor]
This tutorial is useless because entering a mac adderess associated to an IP at the ARP table wont make DHCP assign that IP to that specific MAC address.
MARR, IF I use static IPs on those Devices, DHCP will have no influence on those IPs settings! ASA still lacks this functionality!
Comment from: Rudolf [Visitor]
Unfortunately, indeed this tutorial provides a solution that doesn’t solve what it claims to do.
It is really a shame that the ASA can’t give a fixed IP to a MAC address, something most routers in the price range of 30 dollar can already do…
Comment from: davidnewcomb [Member]
Comment from: Networker [Visitor]
Comment from: Bryan [Visitor]
Comment from: Michael [Visitor]
There is an alias option to the arp command that prevents the entry from expiring, would that solve the issue, I have not bothered to test it, but I read from the remarks that an issue would be that the reservation will expire, add alias at the end and it will not?
Michael
Comment from: Michael [Visitor]
Naa, 4get that, that also does not work.
Michael
Comment from: julia [Visitor]
Comment from: Jorge C. Alexandres [Visitor]
Comment from: Mirza [Visitor]
Form is loading...