|
|
pix, dhcpd . ip reservation's
Hello !
I would like to set up dhcpd in our branch offices (in each office pix
501, 5-10 workstation each).
My purpose is to make each workstation gain concrete ip adress (based on
MAC), and then make static ip <-> arp entries.
Is it posibble with pix ?
I want to have control on distribution of ip address'es because almost
every workstation have different access (access-list) based on ip.
regards
Jarek
|
|
0
|
|
|
|
Reply
|
 jarcar
|
8/18/2004 12:00:08 PM |
|
In article <cfvgc9$up$1@inews.gazeta.pl>, jarcar <jarcar@gazeta.pl> wrote:
:I would like to set up dhcpd in our branch offices (in each office pix
:501, 5-10 workstation each).
:My purpose is to make each workstation gain concrete ip adress (based on
:MAC), and then make static ip <-> arp entries.
:Is it posibble with pix ?
No, not in any current release.
:I want to have control on distribution of ip address'es because almost
:every workstation have different access (access-list) based on ip.
If the IP addresses are static, why are you using dhcp? Just because
it will serve up the default gateway, DNS, and WINS information?
How often is that information going to change?
Perhaps you should take a different approach: use AAA with RADIUS
authentication and downloadable access-lists (or the TACACS+ equivilent,
in which the ACL itself cannot be downloaded but the -name- of
the ACL can be.) Then, no matter which computer a particular
user went to, they would get personalized access. If, that is,
the many different requirements are user-centered instead of being
device-centered.
--
millihamlet: the average coherency of prose created by a single monkey
typing randomly on a keyboard. Usenet postings may be rated in mHl.
-- Walter Roberson
|
|
|
0
|
|
|
|
Reply
|
roberson
|
8/18/2004 5:36:02 PM
|
|
>
> :I want to have control on distribution of ip address'es because almost
> :every workstation have different access (access-list) based on ip.
>
> If the IP addresses are static, why are you using dhcp? Just because
> it will serve up the default gateway, DNS, and WINS information?
> How often is that information going to change?
> Perhaps you should take a different approach: use AAA with RADIUS
> authentication and downloadable access-lists (or the TACACS+ equivilent,
> in which the ACL itself cannot be downloaded but the -name- of
> the ACL can be.) Then, no matter which computer a particular
> user went to, they would get personalized access. If, that is,
> the many different requirements are user-centered instead of being
> device-centered.
Thanks for response.
The problem is that workstations will be replaced by brand new one. And
they will be configured as dhcp client.
In my case device-centered approach is much more adequate.
regards
Jarek
|
|
|
0
|
|
|
|
Reply
|
jarcar
|
8/19/2004 6:44:28 AM
|
|
|
2 Replies
222 Views
(page loaded in 0.065 seconds)
Similiar Articles: DHCP relay through a site-to-site VPN - comp.dcom.sys.cisco ...The clients at the 10.0.2.0 network don't get their IP from the DHCP server at 10.0.1.0 ... So it would appear the PIX DHCP relay agent feature is working just fine. IOS dhcp and polycom 501 phone - comp.dcom.sys.ciscocisco 2801 as dhcp server, ddns - comp.dcom.sys.cisco CISCO PIX 501 and DHCP on outside ... Manual or Dynamic Host Configuration Protocol (DHCP) IP address setup DHCP through IPsec - comp.dcom.sys.cisco... VPN tunnel done via a Cisco PIX to another PIX... This is the problem - DHCP is picking up OK, IP ... Dynamic Host Configuration Protocol (DHCP) HP-UX 11i DHCP Server ... Cannot access PIX 501 PDM - comp.dcom.sys.ciscoI am trying to configure my Pix 501, I changed the DHCP to a static IP, when I try to access the PDM via web I got "The page cannot be displayed" erro... NAT on both interfaces. PIX - comp.dcom.sys.ciscoI know very well 525's configuration ... DHCP relay through a site-to-site VPN ... with site-to-site VPN using two PIX 501s. Both PIXs are running OS ... 255.224 ip ... PIX, PPTP and static NAT? - comp.dcom.sys.ciscoThe PIX is 10.1.1.1. All the PCs are assigned addresses via DHCP from the PIX. ... in one of their remote sites using static IP ... PIX, PPTP ... [pix] vpdn enable dmz - comp.dcom.sys.ciscoHi, How can i enable PPTP on the DMZ interface on a PIX? ... 831 PPTP VPN setup - comp.dcom.sys.cisco... no ip ... translation from our DMZ ... vpdn enable outside dhcpd ... IOS DHCP server - how to enable service on particular interface ...IOS uses that interface IP address ... dot1q trunk interface, without the AP's DHCP ... PIX/ASA 7.x: Enable FTP ... Dynamic Host Configuration Protocol (DHCP) Server. ... PIX 515E Changing from DSL to Cable ISP - comp.dcom.sys.cisco ...... the gateway) nameif ethernet0 outside security0 ip ... know if that'll change whatever it ... to obtain a DHCP ... PIX 515e and two ISP connections: pix, two, isp Keywords ... how to using pix to block site - comp.dcom.sys.cisco... problem i faced in my job it's how to use pix ... You cannot directly use the PIX 515E to block web sites. - you can use it to block IP ... How to block bootp/dhcp ... PIX/ASA as a DHCP Server and Client Configuration Example - Cisco ...When it functions as a DHCP server, the PIX dynamically assigns IP addresses to DHCP clients from a pool of designated IP addresses. You can configure a DHCP server on ... pix, dhcpd . ip reservation's - Velocity Reviews - Computer HardwareHello ! I would like to set up dhcpd in our branch offices (in each office pix 501, 5-10 workstation each). My purpose is to make each workstation gain concrete ip ... 7/23/2012 8:37:06 AM
|
|
|
|
|
|
|
|
|
Search |
Post Question |
Groups |
Stream |
About |
Register
23 followers. 