DHCP server

Posted on 2007-10-10
Medium Priority
Last Modified: 2010-08-05
What are the Pros/Cons or recommendations for using a WAN firewall or Windows server for DHCP on a network?  Right now we have it handled by our firewall.  Thanks
Question by:pcmb

Expert Comment

ID: 20052267
Using Windows or another dedicated appliance as a DHCP server on your internal network means having a local cache of DNS queries that you make, this means that your browser will resolve the ip address of a website faster and it take the load off your internet service providers DNS servers.  If you are on a large network with lots of users (25+) you would want a dedicated DNS server on your LAN to save your internet connections bandwidth for other tasks.

Also If you run a Windows Domain Controller you would need to setup a DNS server on that domain for everything to work correctly.

Author Comment

ID: 20052303
Thanks for the quick response!  I have a domain so of course we are running DNS on the DC.  Currently the firewall is the DHCP server.  Is there any advantage to switching the DHCP server to our Windows server or keep it the way it is?

Expert Comment

ID: 20052322
Assuming we are talking about DHCP only here, having it on your server would be the best bet, especially if you are running Active Directory.  The advantage of having it on the server is that it can replicate to your servers DNS settings, making the machines easier to find by name on the network.  Active Directory is highly dependent on DNS so having DHCP tied into the DNS automatically is a large benefit.

I can't think of other pro/con difference other than the above.
Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.


Expert Comment

ID: 20052340
dhcp server has nothing to do with a cache of dns queries, that is only the case when you have a local dns server. That said, a dhcp server is very handy. You can configure it to assign a range of ip's that you choose. You can do this based on static leases ( by assigning an ip to a certain mac address) or by dynamic leases wich have a server definable lease time. This way you won't have to walk to every client to change ip's or other settings. You can tell it to configure the dns server to use for all clients and many other options, so you don't have to walk over to every machine to do so. Generally dhcp server on windows or linux allow a wider range of configuration options then the very simple hardware firewalls do. Ofcourse there are more advanced hardware firewalls where this is not nessecarily the case.

Expert Comment

ID: 20052363
i second dpait on the integration being a big pro (if you intent to use it, we don't).
LVL 48

Accepted Solution

Jay_Jay70 earned 1000 total points
ID: 20053059
the key point thats missed here....in an AD environment, anything other than a server 2003/2000 DHCP server is a no go. Only DHCP servers that are windows based can update DNS records.....if you have a firewall appliance or another software based DHCP server, they are classified as rogues and your DNS/AD does not like them at all. If you have server 2003, use DHCP on it and NOT on the router....

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

by Batuhan Cetin Within the dynamic life of an IT administrator, we hold many information in our minds like user names, passwords, IDs, phone numbers, incomes, service tags, bills and the order from our wives to buy milk when coming back to home.…
I've always wanted to allow a user to have a printer no matter where they login. The steps below will show you how to achieve just that. In this Article I'll show how to deploy printers automatically with group policy and then using security fil…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an anti-spam), the admin…
As many of you are aware about Scanpst.exe utility which is owned by Microsoft itself to repair inaccessible or damaged PST files, but the question is do you really think Scanpst.exe is capable to repair all sorts of PST related corruption issues?

850 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question