DHCP Scope Recommendations For Windows Server 2003

Posted on 2004-04-21
Last Modified: 2012-06-27
Are there any guidelines to follow when creating a DHCP scope in Server 2003?  For example, is it recommended to have 25%, 50%, etc. more IP addreses in your defined scope than you actually have nodes that need addresses leased?
Question by:Linds462
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2

Accepted Solution

zefiro earned 125 total points
ID: 10884058
My rule of thumb is to include as many addresses as you expect to need during the lifetime of the server, then add 10% so you don't get events in your event log.

 I also like to start and end the scope with a nice round number, so if I have to add a device that needs a static IP to the network, it is easier for my CRT-radiation addled brain to remember where not to put it.

Also, set-up scope options (Subnet, Gateway, DNS, WINS, etc) within the scope instead of using the global scope options, just in case you ever have to set-up a new DHCP scope, can save you a bit of work.
LVL 16

Expert Comment

ID: 10886343
Established practices in DHCP design dictate that the scope should consist of ALL possible addresses in the subnet.
You then use multiple Exclusion ranges on the scope to limit the number of addresses where each exclusion consists of say a 100 address block.

It is done this way because DHCP Scopes cannot be modified once created, but exclusions can be removed at will and each exclusion removal will extend the DHCP scope range by X addresses that are immediatly available.

As an additional precaution I also also split the DHCP Ranges across 2 servers and run both live at the same time for resilience - I have deployed this system successfully to several client, one with over 400 IP subnets - all served by 2 DHCP servers



Expert Comment

ID: 10903833
Just wanted to note that JamesDS's answer is a good one.  While my answer focused more on reducing administrative hassles, James's answer would probably be considered best practice.  My customer base is pretty large and generally not technically advanced enough to even know what DHCP is, so my rules-of-thumb is designed to cause my clients and myself the least amount of headache over time while maintaining stability, security, etc.

Hope this helps
LVL 16

Expert Comment

ID: 10906750

Thank you for the comments. This is a case of large versus small clients. The large clients will want a best practice solution - the smaller clients will want something easy to administer. Either answer is correct, but yours would appear to be more suitable to the situation and therefore more deserving of the points.


Author Comment

ID: 10962983
Thanks guys.  I think we are going to go with a combo.  We are medium sized business, but are merging locations, so we wanted to make sure that we were going to have enough space since we are putting in a new system.  There is nothing like putting in a new system and then 2 months later having to ask for more money to update or change something that was planned incorrectly.  

I think we have decided to have one subnet with the first 254 addresses dedicated to the static devices and the second 254 for the DHCP.  We can merge both locations into one subnet instead of the two separate that we have now.  This should allow us enough space for both with room for growth as well as ease of administration.

So, while not neccessarily going with 'best practice' hopefully we have gotten at least 'good practice' and ease of administration.  A trade-off I am willing to accept :-)

I appreciate your help!

Featured Post

[Webinar] Code, Load, and Grow

Managing multiple websites, servers, applications, and security on a daily basis? Join us for a webinar on May 25th to learn how to simplify administration and management of virtual hosts for IT admins, create a secure environment, and deploy code more effectively and frequently.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

The HP utility "HP Lights-Out Online Configuration Utility for Windows Server 2003/2008" could be of great use when it comes to remotely configure a HP servers ILO WITHOUT rebooting the server. We would only need to create and run scripts using thi…
Recently, I had the need to build a standalone system to run a point-of-sale system. I’m running this on a low-voltage Atom processor, so I wanted a light-weight operating system, but still needed Windows. I chose to use Microsoft Windows Server 200…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question