Migrating from Windows DHCP to Palo Alto

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Migrating from Windows DHCP to Palo Alto

L1 Bithead

Good afternoon, all!

I'm planning to migrate from my current Windows DHCP servers to Palo Alto DHCP.  I'm moving from Windows Server 2012 R2 to an HA pair of PA-850s running PanOS 10.1.9-h3.

Looking for traps, best practice, and any places to get bumped.

 

Thanks to all for looking!

 

Gregg

3 REPLIES 3

L2 Linker

I would advise against this move.

DHCP is very basic in PanOS, you will miss a number of features (or maybe not)

Also it seems to be quite buggy, especially if you have workstations with vm's running in hyper-v and bridged network setup

i mean, it gets annoying really fast to get some tens or even hundreds of such errors without any workaround except configuring a reservation for that mac-address on a different ip. Only to have the same issue several days later and end up moving that reservation to a completely different IP

 

Manu_P_0-1698848832366.png

 

Do you have 172.16.30.95 configured statically on some device and not excluded from Palo DHCP pool?

Enterprise Architect, Security @ Cloud Carib Ltd
Palo Alto Networks certified from 2011

Nope, initially i had no reservations at all and that IP address was not in use in that subnet / network segment. 

 

Some day, i start getting this type of messages (ip address already in use).

The only workaround was to assign a static mapping to the offending mac-address. After committing the DHCP reservation, the offending mac-address got the new ip address, and the "old" ip address was not used by other devices (so there was no competition for that IP at the time, but later on it was "snatched" by a different device without any issues)

Then again, days later, same device started to generate the same messages and the workaround was again to change the static mapping to yet another IP.

This happened with several different devices, the only common thing was each of those devices being a w10 machine which was also running hyper-v vm with bridged networking with the host.

 

Eventually, i ended up adding the DHCP role to a Windows server that was already in place there and never had any issues further on

  • 1047 Views
  • 3 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!