[c-nsp] Cisco ASA 5512-X DHCP server pool size

Chuck Church chuckchurch at gmail.com
Thu Nov 6 08:35:24 EST 2014 

I was curious about this.  Just checked the 9.2 config guide, it says the
same thing.  Very odd.

Chuck

-----Original Message-----
From: cisco-nsp [mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Lee
Starnes
Sent: Thursday, November 06, 2014 12:07 AM
To: Mike Hale
Cc: cisco-nsp at puck.nether.net
Subject: Re: [c-nsp] Cisco ASA 5512-X DHCP server pool size

That is a real bummer. We deploy firewalls at many enterprise clients and
this is the first one that required a Cisco firewall  and it is limited to a
/24 for their DHCP or they have to use an external DHCP server. Very odd
limitation for such an costly device considering even the $150 Mikrotiks can
do /8 DHCP pools.

Well, thanks for the links Mike.

Best
 Lee

On Tue, Nov 4, 2014 at 10:42 PM, Mike Hale <eyeronic.design at gmail.com>
wrote:

> It looks like this is a fixed limit.
>
>
> http://www.cisco.com/c/en/us/td/docs/security/asa/asa82/configuration/
> guide/config/dhcp.html
>
> https://supportforums.cisco.com/discussion/11554641/cisco-asa-5510-dhc
> p
>
> Time to yell at your Cisco rep, I think.
>
> On Tue, Nov 4, 2014 at 7:51 PM, Lee Starnes <lee.t.starnes at gmail.com>
> wrote:
> > Hi Tim,
> >
> > Wish it were that simple.
> >
> > dhcpd address 10.0.0.1-10.0.1.254 inside Warning, DHCP pool range is 
> > limited to 256 addresses, set address range as: 10.0.0.1-10.0.0.254
> >
> > Lee
> >
> >
> >
> > On Tue, Nov 4, 2014 at 7:09 PM, Tim Warnock <timoid at timoid.org> wrote:
> >
> >> > From: cisco-nsp [mailto:cisco-nsp-bounces at puck.nether.net] On 
> >> > Behalf
> Of
> >> > Lee Starnes
> >> > Hello,
> >> >
> >> > Does anyone know if there is a way to increase the DHCP server 
> >> > pool
> size
> >> > beyond 255 addresses? License key or anything that can be 
> >> > obtained
> from
> >> > Cisco? A search of the Cisco site turned up nothing about DHCP 
> >> > pool
> >> sizes.
> >> > Seems like a really poor limitation.
> >> >
> >> > Best
> >> >
> >> > Lee
> >>
> >> Can't just increase your subnet size?
> >>
> >> _______________________________________________
> >> cisco-nsp mailing list  cisco-nsp at puck.nether.net 
> >> https://puck.nether.net/mailman/listinfo/cisco-nsp
> >> archive at http://puck.nether.net/pipermail/cisco-nsp/
> >>
> > _______________________________________________
> > cisco-nsp mailing list  cisco-nsp at puck.nether.net 
> > https://puck.nether.net/mailman/listinfo/cisco-nsp
> > archive at http://puck.nether.net/pipermail/cisco-nsp/
>
>
>
> --
> 09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0
>
_______________________________________________
cisco-nsp mailing list  cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/

More information about the cisco-nsp mailing list