This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 

DHCP Forwarding

DHCP Forwarding

Alex
New Contributor

ā€Ž11-13-2018 08:31 PM

We have a VLAN that we want isolated from the rest of the network (hosts on this VLAN can only talk to hosts on same VLAN). The problem is, we also want DHCP on this VLAN (traffic should get out of that VLAN just to get DHCP addresses from our server). I have enabled bootprelay on the core router. The problem is: if I enable IPForwarding on this VLAN, it won't be isolated anymore.

Is there a way to keep IPForwarding disabled while routing DHCP traffic only?

Thanks in advance.
0 Kudos
7 REPLIES 7

Eric_Burke
New Contributor III

ā€Ž11-13-2018 10:15 PM

Another thought. Can you stretch the vlan to a subinterface on your dhcp and disable other services on that interface?
0 Kudos

Alex
New Contributor
In response to Eric_Burke

ā€Ž11-13-2018 10:15 PM

Interesting idea... however, the DHCP server is managed by a different group and they will not allow this setup.

0 Kudos

Eric_Burke
New Contributor III

ā€Ž11-13-2018 10:13 PM

Perhaps a policy to deny all but dhcp originating in that vlan?
0 Kudos

Alex
New Contributor
In response to Eric_Burke

ā€Ž11-13-2018 10:13 PM

Yep, it's looking like I may have to go this route (I was trying to avoid deploying an ACL in our Core router). It'd be nice if Extreme switches could have IPForwarding disabled but bootpr enabled for a particular VLAN ļ™‚ .

0 Kudos
GTM-P2G8KFN