This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
marius_kade
Participant
‎2024-02-01 08:30 AM
Jump to solution

Setting an DHCP Reservation in CheckPoint DHCP Server on 6400

Hello everyone,

Our CheckPoint Cluster manages DHCP in some of our networks. I'm trying to ensure that a specific device always gets the same IP address, and I'd like to achieve this through DHCP reservation or another option.

Despite searching online and in the forum, I haven't been able to find a solution. Does anyone now how to do this on a CheckPoint 6400 Base Cluster?

Thanks for your assistance,
Marius

Labels
0 Kudos
1 Solution

Accepted Solutions
PhoneBoy
Admin
Admin
‎2024-02-06 11:29 AM
In response to marius_kade
Jump to solution

Yes, it needs to be entered on both cluster members and it may require a restart of dhcpd.
I believe the main thing to be entered is the host testclient stanza (each line needs a semicolon at the end). 

View solution in original post

13 Replies
PhoneBoy
Admin
Admin
‎2024-02-01 07:52 PM
Jump to solution

Requires editing a configuration file.
See: https://support.checkpoint.com/results/sk/sk92473

marius_kade
Participant
‎2024-02-01 11:30 PM
In response to PhoneBoy
Jump to solution

Thanks for your reply.

So as i understand right, i have to write it like the example below in the dhcpd.conf file right?
Do have to this on both cluster members?

Can i use the IP-address of the lease that the client already has or do i have to pick a not assigned one?

Example:
________________________________________________________________
ddns-update-style none;
 
 
subnet 192.168.89.0 netmask 255.255.255.0 {
    default-lease-time 43200;
    max-lease-time 86400;
    option host-name= pick(option host-name,
       concat("dhcp-", binary-to-ascii(10, 8, "-", leased-address)));
    range 192.168.89.10 192.168.89.254;
    option routers 192.168.89.1;
    option domain-name-servers 9.9.9.9, 1.1.1.1;
}
 
host testclient {
hardware ethernet 08:50:40:A2:F2:3D
fixed-address 192.168.89.20
}
 
________________________________________________________________
 
Thanks for your help!!!
 
Marius
0 Kudos
marius_kade
Participant
‎2024-02-06 05:59 AM
In response to PhoneBoy
Jump to solution

Thank you for your response!

Sorry for my late response, but I had already written something, but it either disappeared or never appeared.

 

So, does that mean I have to enter it in the dhcpd.conf file, right?
Should I do that on both cluster members? Or maybe even on the management server?
Is this syntax correct?

Config example:

ddns-update-style none;
 
 
subnet 192.168.89.0 netmask 255.255.255.0 {
    default-lease-time 43200;
    max-lease-time 86400;
    option host-name= pick(option host-name,
       concat("dhcp-", binary-to-ascii(10, 8, "-", leased-address)));
    range 192.168.89.10 192.168.89.254;
    option routers 192.168.89.1;
    option domain-name-servers 9.9.9.9, 1.1.1.1;
}
 
host testclient {
hardware ethernet 08:50:40:A2:F2:3D
fixed-address 192.168.89.20
}
0 Kudos
PhoneBoy
Admin
Admin
‎2024-02-06 11:29 AM
In response to marius_kade
Jump to solution

Yes, it needs to be entered on both cluster members and it may require a restart of dhcpd.
I believe the main thing to be entered is the host testclient stanza (each line needs a semicolon at the end). 

marius_kade
Participant
‎2024-02-13 01:59 AM
In response to PhoneBoy
Jump to solution

Many Thanks! I will try it.

0 Kudos
martin-mandat
Explorer
‎2024-07-09 11:54 PM
In response to PhoneBoy
Jump to solution

Be aware that any changes directly made in /etc/dhcpd.conf will be lost after gateway reboot or restart of network services because management process on gateway creates fresh dhcpd.conf based on information in configuration.

0 Kudos
PhoneBoy
Admin
Admin
‎2024-07-10 10:43 AM
In response to martin-mandat
Jump to solution

You have to make file immutable per: https://support.checkpoint.com/results/sk/sk92473 

0 Kudos
MTFT
Explorer
‎2026-01-18 08:54 PM
In response to PhoneBoy
Jump to solution

As someone who apparently doesn't have access to that article, could you elaborate on how this is done?

_Val_
Admin
Admin
‎2026-01-19 12:01 AM
In response to MTFT
Jump to solution

You need to log in to the UserCenter to see it. If you are logged in to CheckMates, you should be able to log in there as well.

0 Kudos
PhoneBoy
Admin
Admin
‎2026-01-19 11:27 AM
In response to MTFT
Jump to solution

The actual command is a standard Linux (expert mode) command: chattr +i /etc/dhcpd.conf
The SK (which requires you to be logged in to see) is merely a reference that it's required in this case. 

0 Kudos
MTFT
Explorer
‎2026-01-21 03:08 PM
In response to PhoneBoy
Jump to solution

Thanks! I figured it was that or something similar but wanted to make sure.
I did try looking at that SK while logged in bit still was unable to access it, seems that you need to have some higher level of access than I do.

0 Kudos
PhoneBoy
Admin
Admin
‎2026-01-22 08:35 AM
In response to MTFT
Jump to solution

Some SK articles require your UserCenter account to be tied to an active support agreement.

0 Kudos
AttiqRahman786
MVP
MVP
‎2026-01-20 01:48 AM
In response to MTFT
Jump to solution

A while back, I created a document explaining the process in detail. It works for me. hope it helps.

Preview file
163 KB

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events