Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 7 replies
  • Answers 1 answer
  • Subscribers 4 subscribers
  • Views 12245 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Routing / VLAN issue

Da17

Hi,

I am hoping this is a simple solve.

2 issues:

  1. Client A is unable to get a DHCP address from the DHCP Server.
  2. Sophos cannot PING DHCP Server using eth4 Interface.

However setting a STATIC IP on Client A allows communication to DHCP Server.

Quick rundown:

  • Sophos ETH4
    • Ethernet VLAN Interface (58)
  • Switch Port 12
    • Setup as TRUNK
  • Switch Port 10
    • Setup as VLAN58

Does Switch Port 30 need to be setup as a TRUNK?



This thread was automatically locked due to age.
  • 0

    Hi and welcome to the UTM Community!

    1. PC 1 is in an Ethernet segment separate from the DHCP server, so it can't get DHCP unless you configure a relay.
    2. Pinging is regulated on the 'ICMP' tab of 'Firewall'.  The "Ping" Service is not included in the "Any" Service.  "Any" only includes TCP and UDP, not any of the other IP Protocols.

    If you're still having a problem, what does doing #1 in Rulz tell us?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Hi Balfson 

     

    You can create a DHCP relay on the SG Firewall
    Go to Network Services > DHCP > DHCP Relay

    Select your DHCP server and the interface in client A network

     

    Best regards

  • 0 in reply to BAlfson

    Hi,

    Thanks for the feedback.

    1. a DHCP relay has been setup on the UTM already (as per the red DHCP Relay shown in the image)
    2. All pinging on the ICMP tab is enabled, which is why i thought it may be a routing / VLAN issue

    Nothing is shown in the logs.

    Thanks

  • 0 in reply to Da17

    Then it does sound like an issue with your switch or DHCP server, but, just to completely eliminate the UTM's configuration, please show pictures of the 'DHCP Relay Configuration' and the Edits of the Interfaces used in that configuration.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    DHCP Relay:

    Employee LAN (VLAN58):

     

    Thanks

  • 0 in reply to Da17

    I believe that the network containing the DHCP server must also be included in the Relay definition.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    You my friend are a savior!


    I knew it would be something simple.

     

    Thank you

Unfiltered HTML