Posted on 2006-04-06
Last Modified: 2013-11-16

I am currently configuring a Cisco PIX 501 firewall. However, whenever I try to configure IP address on it, I get an error message saying 'Interface address is not on same subnet as DHCP poolroute'. So I figured out that PIX is acting as a DHCP server. What I really want to do is disable this function. I've ran through several commands to no avail.

Somebody please help!

Question by:cytrax
    LVL 25

    Expert Comment

    first do
    show run | grep dhcpd
    look for the line with
    dhcpd address <start IP>-<end IP> inside

    copy that line down and put a no before it
    example, by default it should like like this
    dhcpd address inside
    although the range may be different depending upon the license you have on your 501, I have an unlimited license so it spans the entire class C
    so if that's what is says then you type
    no dhcpd address inside

    this will get rid of the range and automatically turn off the dhcp server on the firewall
    now you should be able to change the IP of the 501

    Accepted Solution

    To disable DHCP through the GUI you need to do the following in V.7

    Click on the Configuration tab across the top

    Click on Properties down the left hand side

    Click the + next to DHCP services in the middle list.

    Click on DHCP Server.

    This is where you are able to Enable and Disable DHCP
    LVL 3

    Author Comment

    Thank you for reply.

    @ Cyclops3590: I have tried what you suggested. However I get this error message: 'Type help or '?' for a list of available commands'. This is because I think the version of IOS on PIX 501 is only a fraction of the real deal, which is why I'm having this problem.

    @ mh144831: I will try you suggestion. I guess stupid enough to think command line would save. Back to good old GUI then.

    I'll keep you posted.

    LVL 25

    Expert Comment

    are you in global mode when you try this command your command line needs to look like this
    LVL 3

    Author Comment

    Hello guys,

    Yes, I was running all the commands in config mode. I think the IOS on the firewall is limited. However, I was able to use GUI like mh144831 suggested. It was pretty straight forward from there. It's a shame I can't do it all from command mode. Thanks for the all your contributions.


    Featured Post

    How your wiki can always stay up-to-date

    Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
    - Increase transparency
    - Onboard new hires faster
    - Access from mobile/offline

    Join & Write a Comment

    As a financial services provider, your business is impacted by two of the strictest federal regulations on record: the Sarbanes-Oxley Act and the Gramm-Leach-Bliley Act. Correctly implementing faxing into your organization to provide secure, real-ti…
    Don’t let your business fall victim to the coming apocalypse – use our Survival Guide for the Fax Apocalypse to identify the risks and signs of zombie fax activities at your business.
    Sending a Secure fax is easy with eFax Corporate ( First, Just open a new email message.  In the To field, type your recipient's fax number You can even send a secure international fax — just include t…
    In this seventh video of the Xpdf series, we discuss and demonstrate the PDFfonts utility, which lists all the fonts used in a PDF file. It does this via a command line interface, making it suitable for use in programs, scripts, batch files — any pl…

    754 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    22 Experts available now in Live!

    Get 1:1 Help Now