Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

DHCP requests not routing over IPSEC

I have a DHCP server running at head office on 192.168.100.21 which is a Windows Server that has a Sophos as it's gateway

The branch office has a Sophos

There is an IPSEC tunnel between the two Sophos units

The branch office has a DHCP relay pointing to the head office server 192.168.100.21

I've setup SNAT and IPSEC routes

The DHCP server isn't responding to the requests across the IPSEC

What am I missing?



This thread was automatically locked due to age.
Parents Reply Children
  • Hello  ,

    Could you please confirm this CLI is enabled on SFOS where DHCP server is running?

    console> system dhcp lease-over-IPSec
    enable Enable IP Lease over IPSec for all DHCP servers
    disable Disable IP Lease over IPSec for all DHCP servers (Default Value)
    show Show IP Lease over IPSec configuration

    Also, please share DHCP server configuration created for branch network (if above CLI doesn't work).

    Regards,

    Sanket Shah

    Director, Software Development, Sophos Firewall

  • The Sophos is not the DHCP server, therefore the system dhcp lease-over-IPSEC command is irrelevant

    I've got the traffic flowing to the server now - I stupidly had made an error in the tunnelname in the CLI for the ipsec_route

    However DHCP still not working - but that's a Windows issue now.