Avatar of WAMSINC
WAMSINC
Flag for United States of America asked on

How to assign a Cisco PIX VPN user a static IP

hi Everyone,
 
does anyone know if it is possible to make sure one VPN user always gets the same IP address?
We are using a PIX 515E

 thanks!
CiscoVPNDNS

Avatar of undefined
Last Comment
Michael Ortega

8/22/2022 - Mon
Software_onbekend

yes that is possible.
Michael Ortega

If they are always using the same system you can simply setup a DHCP reservation on whatever device is acting as the DHCP server. If it's the PIX simply setup the reservation as a part of the VPN DHCP Scope.

MO
Michael Ortega

Another note is that if you're using a RADIUS server for authentication you could assign the IP address based on the actually "user" account.

MO
Experts Exchange has (a) saved my job multiple times, (b) saved me hours, days, and even weeks of work, and often (c) makes me look like a superhero! This place is MAGIC!
Walt Forbes
WAMSINC

ASKER
thanks - this person will be using the same laptop and I have his MAC address - what is the command for that?
WAMSINC

ASKER
Im not seeing a command to create a dhcp reservation in the documentation, is there a workaround ?
Michael Ortega

I just remembered that PIXs can't do DHCP reservations. ASA's can. You'll need to use your internal DHCP server (presumably a Windows Server running DHCP). You can setup DHCPRELAY on the Cisco PIX to relay DHCP traffic to your internal host.

dhcprelay server 10.10.10.10 inside
dhcprelay enable inside

MO
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.
WAMSINC

ASKER
ok thanks - I set up a lease pool on a windows server, but when I enter dhcprelay enable inside I get the following:

DHCP Relay cannot receive DHCP requests and forward them on the same interface.
WAMSINC

ASKER
from what I can find, I think you meant to say "dhcprelay server 10.10.10.10. outside"

but looks like there is a tunnel group set up to get a local IP address and when I enable the dhcprelay I get the error ""Secure VPN Connection terminated by Peer. Reason 433:(Reason Not Specified by Peer)" "
ASKER CERTIFIED SOLUTION
Michael Ortega

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question