- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
Enhanced Security Measures in Place: To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.
11-13-2019 09:55 PM
11-14-2019 01:10 AM
Hello
What version of code are you running on the 3020?
I just did a packet capture of my VM firewall and it does perform a unicast as you confirmed.
So, if your FW is sending the dhcp as a broadcast, something in the underlying code may be causing this.
Hence the reason to ask about the software version.
thanks
11-14-2019 07:01 AM - edited 11-14-2019 07:36 AM
@FarzanaMustafa looking thru the RFC the Broadcast bit is set by the client and only when the client is not able to receive IP unicast messages before its IP stack is fully configured. Per the RFC if the flag is set to "1" then then the server SHOULD send as an IP broadcast, if the flag is set to "0" then the server SHOULD send as an IP unicast, the latter being pretty typical these days with modern IP stacks. In either case the DHCP server SHOULD honor the client request.
Can you clarify what you are seeing and if you are seeing this at the client or server or FW?
11-17-2019 09:50 PM
Thanks @ddelcourt & @S.Cantwell
We had a remote session with PA TAC team and they found below.
>In the PA captures, we could see DHCP discover being received and DHCP offer being sent out.
>However on the client, DHCP discover was not reaching.
>As confirmation the packet sent from PA, we did a port mirror on the switch and we could see DHCP discover was reaching there.
Customer will now explore more on switch side.
11-18-2019 08:34 AM
When they say client, do they mean the workstation trying to get the IP address? That machine shouldn't receive a discover since it's the one broadcasting. The discover goes to the server, which responds with an offer.
Is the offer being received by the client?
11-19-2019 05:04 PM
Yes client=workstation in this case.
Anyway, customer has abandoned the DHCP server config on the Palo Alto.
They are now using the firewall to DHCP relay to an internal DHCP server.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!