Solved

DHCP via Multiple VLANS ?

Posted on 2016-09-13
3
79 Views
Last Modified: 2016-09-17
I have 100 users on one Windows 2012 R2 domain server,
want to split my network up into multiple VLANS by
department/type/etc, and am willing to replace my
10+ year old old Cisco switches

Do you have any good articles on how I can setup my the
ONE Windows 2012 R2 server to service DHCP requests
for all VLANS ?
0
Comment
Question by:finance_teacher
3 Comments
 
LVL 57

Assisted Solution

by:Cliff Galiher
Cliff Galiher earned 125 total points
ID: 41796369
With multiple VLANs, you'll need multiple NICs in the server or some sort of routing between VLANs, and preferably ine that supports IP helpers. Right now there are just too many holes in your planned topology to get any more specific.
0
 
LVL 12

Assisted Solution

by:Bryant Schaper
Bryant Schaper earned 125 total points
ID: 41796431
If you stick with Cisco you just need the IP Helper command like Cliff said, it will forward the DHCP request to a DHCP server off the local network/vlan because broadcast traffic doesn't get routed.

It is simple to setup if you can setup a vlan, then you just use the ip helper-address command

ip helper-address 10.0.0.2

Open in new window

for example assuming your dhcp server is 10.0.0.2

it will package the request and send it, your DHCP along with Sites and Services in AD will then assign the correct scope to the request and send it back
0
 
LVL 4

Accepted Solution

by:
Felicia King earned 250 total points
ID: 41796727
Just setup DHCP relay or IP helper on whatever the router device is for each subnet. If you are using WDS in the environment, you need to have two IPs, the one for the true DHCP server and the WDS server. This is like what Bryant said. I was just confirming that his approach of putting the IP helper/DHCP relay in place is the best approach.

The clarification is that you need to put the relay configuration wherever the gateway is for each subnet. You make no mention of what actually is the router/gateway for each subnet/VLAN.

I strongly recommend you use a security appliance as your core router and do all the VLAN configuration there. Then you simply LAG at least four ports on the core as a VLAN uplink and send that to your Cisco stack tagging all the VLAN traffic required head to end on the trunk ports.

If you go with the conventional Cisco model, you will have no security inspection or controls of traffic between subnets because all you are using for that is a router configuration in the Cisco switch. A Cisco switch is not a security appliance.
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I don't know if many of you have made the great mistake of using the Cisco Thin Client model with the management software VXC. If you have then you are probably more then familiar with the incredibly clunky interface, the numerous work arounds, and …
I'm a big fan of Windows' offline folder caching and have used it on my laptops for over a decade.  One thing I don't like about it, however, is how difficult Microsoft has made it for the cache to be moved out of the Windows folder.  Here's how to …
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
This tutorial will walk an individual through the process of installing of Data Protection Manager on a server running Windows Server 2012 R2, including the prerequisites. Microsoft .Net 3.5 is required. To install this feature, go to Server Manager…

830 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question