Missing feature: Cisco ASA dhcp static leases

Cisco ASA has an built-in dhcp-server that can become handy in some situations. Corporate deployments almost certainly contains one or more servers and especially when it comes to Windows networks I wouldn’t recommend anything else than a proper server-based dhcp-server.

In smaller implementations however, the youngest sibling in the ASA family, 5505 is often the only network equipment on-site and for those purposes the dhcp-server functionality is quite neat.

One feature I miss a lot in ASA dhcp-server is the ability to do static leases. I often get questions like

“We use dhcp for simple mobility of our laptops and uses the ASA dhcp-server at remote locations. But I wanna permit or deny certain traffic for one specific computer, and want to make sure that he/she always gets the same IP. How do I solve this? And by the way, don’t tell me to configure that computer with static IP because then it doesn’t work when the user moves the pc to another network.”

And the simple answer to this is: Sorry, you can’t. Because ASA dhcp-server doesnt do static leases.

Cisco, can we have this feature pretty please with sugar on top?

