Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations biv343 on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Multiple Scopes on DHCP

Status
Not open for further replies.
gmail2

gmail2

Programmer
Jun 15, 2005
987
IE
I've got a new 2003 server with IP adress 192.168.0.1, however this server will act as a DC for two different subnets - 192.168.0.0/24 and 192.168.1.0/24. I need to configure DHCP for both of these scopes (there's a firewall between the two and I've already configured DHCP relay on it) but I have two questions:
1. Should I create a superscope and put the two scopes in it? From what I can see, a superscope is for two logical subnets on the SAME physical subnet (which is not the case here). Or should I just create two scopes without the superscope?

2. How do I make sure that clients in the 192.168.0.0/24 subnet don't get served IP addresses from the 192.168.1.0 scope?

Thanks in advance for anyone that can help me out with this

Irish Poetry - Karen O'Connor
Get your Irish Poetry Published
Garten und Landschaftsbau
 
Sort by date Sort by votes
do you have your DC multihomed? If so, this is definitely not recommended.

Create 2 separate scopes.

DHCP will issue the correct ip for the remote client. The decision will be made based on the source IP. (which will be border router IP)



Victor K (Microsoft Consulting Services)
MCSA/MCSE:Security & Messaging;CNE;CCSE+;CIWSP;CIWSA;Network+;Security+;CCNA;nCSE;CISSP
 
Upvote 0 Downvote
No, the server isn't multihomed - it has one IP address on the 192.168.0.0 subnet and then DHCP relay is configured on the firewall between the two subnets - so any DHCP broadcasts sent on the 192.168.1.0 subnet will be forwarded to the server's IP - but how will it know which scope to assign the IP address from?

Irish Poetry - Karen O'Connor
Get your Irish Poetry Published
Garten und Landschaftsbau
 
Upvote 0 Downvote
As I told before: The decision will be made based on the source IP. (which will be border router IP)



Victor K (Microsoft Consulting Services)
MCSA/MCSE:Security & Messaging;CNE;CCSE+;CIWSP;CIWSA;Network+;Security+;CCNA;nCSE;CISSP
 
Upvote 0 Downvote
I have seven scopes on one server, it works just as GENEnG has explained. The request for an IP comes through the requestors router, which determines which scope to assign from.



I'm Certifiable, not cert-ified.
It just means my answers are from experience, not a book.
 
Upvote 0 Downvote
OK, thanks for that, but what about the computers that are on the same physical and logical subnet as the server? What's to stop them getting IP addresses from the subnet which is intended for us on the other side of the firewall (ie 192.168.1.0)

Thanks again

Irish Poetry - Karen O'Connor
Get your Irish Poetry Published
Garten und Landschaftsbau
 
Upvote 0 Downvote
Because they're on the same subnet, they'll pull from the proper pool as well.

I'm Certifiable, not cert-ified.
It just means my answers are from experience, not a book.
 
Upvote 0 Downvote
To answer your question with a little more detail. DHCP broadcast "request for IP" will either be a Multicast or Unicast broadcast. I dont rember off hand if I'm 100% but if the broadcast is Unicast it is from the same subnet. If mutlicast its from another subnet and will have the subnet address in the packet. The info in the packet is the mechanism that allows DHCP to know which pool to assign an address from.
 
Upvote 0 Downvote
Sorry guys, It's been a long time... didn't mean to confuse the subject.
As established in RFC 1542, the DHCP Relay Agent can forward the packet to an IP broadcast, multicast, or unicast address. In practice, DHCP Relay Agents forward DHCPDiscover messages to unicast IP addresses which correspond to DHCP servers.
Click to expand...
So my point being, If DHCP sees that it is a unicast broadcast, it know the Discover is comming from a relay agent and the client is not on the same subnet (As the DHCP Server).
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

DrB0b
  • Locked
  • Question
Hybrid on prem AD with Azure AD
Replies
2
Views
311
DrB0b
DrB0b
James281
  • Locked
  • Question
Enrolment agent (enrol on behalf of) stopped working
Replies
1
Views
240
mikehook
mikehook
lacked
  • Locked
  • Question
problem with windows update on windows server 2016
Replies
1
Views
209
maybeimaleo
maybeimaleo
edgar28
  • Locked
  • Question
Question on Network cards - Windows Server 2019
Replies
1
Views
194
DrB0b
DrB0b
Billz66
  • Locked
  • Question
unable to instal msmq on server 2019 get sxs assembly missing
Replies
0
Views
301
Billz66
Billz66

Part and Inventory Search

Sponsor

Back
Top