Print Download PDF Send Feedback

Previous

Next

DHCP Services Initial Setup - Management Servers

This procedure shows how to configure the DHCP services on the Security Management Server or the Multi-Domain Server.

To configure the new DHCP services on the server:

  1. Connect to the command line on the Security Management Server or the Multi-Domain Server (over SSH, or console).
  2. Log in to Expert mode.
  3. On Multi-Domain Server, go to the context of the applicable Domain Management Server:

    [Expert@HostName:0]# mdsenv <Name or IP Address of Domain Management Server>
  4. Examine the contents of all the related table.def files. For file locations, refer to sk98339.

[Expert@HostName:0]# egrep "no_hide_services_ports|no_fold_services_ports" /path_to_related/table.def
  1. If UDP port 67 and UDP port 68 are configured in the no_hide_services_ports or the no_fold_services_ports tables, edit the related table.def file and remove these ports.

    [Expert@HostName:0]# vi /path_to_related/table.def

    Note - These table changes are only necessary if one or more VSX or ClusterXL clusters run DHCP Relay. You can skip this step, if DHCP Relay is only used on VRRP clusters or Standalone.

    Change from:

no_hide_services_ports = { <4500,17>, <500,17>, <259,17>, <1701,17>, ..., <68,17>, <67,17> }

no_fold_services_ports = { <4500,17>, <500,17>, <259,17>, <1701,17>, ..., <68,17>, <67,17> }

To:

no_hide_services_ports = { <4500,17>, <500,17>, <259,17>, <1701,17>, ... }

no_fold_services_ports = { <4500,17>, <500,17>, <259,17>, <1701,17>, ... }
  1. Install the Access Control Policy on the applicable Security Gateways.
14 February 2022
Was this helpful?
Incorrect information Not what I'm looking for Too much information Confusing information
© 2021 Check Point Software Technologies Ltd. All rights reserved.