DHCP relay is not supported in the Cisco ASA. Due to this reason, you need to allow DHCP requests and replies through the Cisco security appliance in transparent mode. This can be achieved by configuring access lists in the firewall. Configure these two access lists in the Cisco ASA:

1.	access-list extended udp any eq 67 This access list allows DCHP requests from the inside interface to the outside. Apply this access list on the inside interface of the firewall.
2.	access-list extended permit udp any eq 67 This access list allows the replies from the server in the other direction. Apply this access list on the outside interface of the firewall.

If unable to specify a particular destination host due to the client broadcasting a DHCPDISCOVER request on port 68, you can use any any as a source and destination.
View more Cisco How-To Tutorials
http://www.BradReese.Com

	Cisco skills shortage is baloney, expert says
	Q & A with the ex-Cisco star who joined ethernet fabric switching startup, Woven Systems
	Earth Day message from BradReese.Com
	Vyatta: Cisco's product line remains locked up tighter than Fort Knox
	Help on the way for SMB telephony reseller margins being squeezed to death by Cisco
	Brad Reese on Cisco Story Archives

Cisco Jobs Cisco Repair Cisco Resumes Cisco Power Supplies