Configuring a DHCP Server

This section describes how to configure a DHCP server. The security appliance can act as a DHCP server to allocate IP addresses for the DHCP clients in the sub networks.

Creating a DHCP Server

To create a DHCP server, take the following steps:

  1. On the Navigation pane, click Configure > Network > Network to visit the Network page.
  2. On the Task tab in the right auxiliary pane, click DHCP.
  3. In the DDNS List dialog, click New.
  4. In the DHCP Configuration dialog, select an interface to which DHCP server will be applied from the Interface drop-down list.
  5. In the Type section, click DHCP server.
  6. On the Basic tab, configure DHCP server's basic properties, including General and Address Pool.
    Option Description
    General Gateway: Configures a gateway IP for the client.
    Netmask: Configures a netmask for the client.
    DNS1: Configures a primary DNS server for the client. Type the server's IP address into the box.
    DNS2: Configures an alternative DNS server for the client. Type the server's IP address into the box.
    Address pool

    Configures an IP range in the address pool. The IPs within this range will be allocated. Take the following steps:

    1. Type the start IP and end IP into the Start IP and End IP box respectively.
    2. Click Add to add an IP range which will be displayed in the list below.
    3. Repeat the above steps to add more IP ranges. To delete an IP range, select the IP range you want to delete from the list and click Delete.
  7. Configure Reserved Address ( IP addresses in the Reserved Address, within the IP range of the address pool, are reserved for the DHCP server and will not be allocated).
    To configure a reserved address, click the Reserved Address tab, type the start and end IP for an IP range into the Start IP and End IP box respectively, and then click Add. To delete an IP range, select the IP range you want to delete from the list and then click Delete.
  8. Configure IP-MAC Binding. If the IP is bound to a MAC address manually, the IP will only be allocated to the specified MAC address.
    To configure an IP-MAC Binding, click the IP-MAC Binding tab and type the IP and MAC address into the IP address and MAC box respectively, and then click Add. Repeat the above steps to add multiple entries. To delete an IP-MAC Binding, select an entry from the list and click Delete.
  9. Click the Advanced tab to configure the DHCP server's advanced options.
    Option Description
    General Domain: The domain name configured by the DHCP client.
    Lease: Specifies a lease time. The value range is 300 to 1048575 seconds. The default value is 3600. Lease is the period during which a client is allowed to use an IP address, starting from the time the IP address is assigned. After the lease expired, the client will have to request an IP address again from the DHCP server.

    Auto configure: Enables automatic configuration. Select an interface with DHCP client enabled on the same gateway from the drop-down list. Null indicates auto configure is not enabled.

    Auto configure will function in the following condition: Another interface with DHCP configured on the security appliance enables DHCP client. When auto configure is enabled, if the DHCP server (security appliance) does not have DNS, WINS or domain name configured, the DHCP client (DHCP) will dispatch the DNS, WINS and domain name information obtained from a connected DHCP server to the host that obtains such information from the DHCP server (security appliance). However, the DNS, WINS and domain name that are configured manually still have the priority.
    WINS1: Configures a primary WINS server for the client. Type the server's IP address into the box.
    WINS2: Configures an alternative WINS server for the client. Type the server's IP address into the box.
    Server SMTP server: Configures a SMTP server for the client. Type the server's IP address into the box.
    POP3 server: Configures a POP3 server for the client. Type the server's IP address into the box.
    News server: Configures a news server for the client. Type the server's IP address into the box.
    Relay agent

    When the security gateway (security appliance1) with DHCP server enabled is connected to another security gateway (security appliance2) with DHCP relay enabled, and the PC obtains security appliance1's DHCP information from security appliance2, then only when the relay agent's IP address and netmask are configured on security appliance1 can the DHCP information be transmitted to the PC successfully.

    Relay agent: Type relay agent's IP address and netmask, i.e., the IP address and netmask for the interface with relay agent enabled on security appliance2.
  10. Click OK to close the dialog and return to DHCP List. The configured DHCP servers will be displayed in the DHCP list.

Editing a DHCP Server

To edit a DHCP server, select the server you want to edit and click Edit. In the DHCP Configuration dialog, modify according to your need.

Deleting a DHCP Server

To delete a DHCP server, select the server you want to delete and click Delete.