Hello everyone,
since the update to V21 the DHCP relay no longer works.
Can anyone help here?
Added TAGs
[edited by: Erick Jan at 1:15 AM (GMT -8) on 18 Nov 2024]
Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.
Hello everyone,
since the update to V21 the DHCP relay no longer works.
Can anyone help here?
Hi Toni,
SFOS 20.0.2 MR-2-Build378
Hello,
- How many DHCP relay are configured? and topology?
16 relays are configured.
All relays point to the same domain controller. Everything worked before upgrading to V21. When you downgrade to the previous version everything works again
- Do you use DHCP server or DHCP client in SFOS along with relay?
Yes, SFOS also provides four DHCP servers
- Do you see any service dead on control center?
all services have started
- Connectivity confirmation between relay and server.
The connection and server are OK. When downgrading from SFOS everything works again
- Packet capture or tcpdump on "port 67" while client is requesting IP via DHCP?
Sorry, I don't have one at the moment
- Could you please try updating one of the DHCP relay and check whether it starts working?
I have already deleted a relay and recreated it again. Unfortunately without success
what is the current setting on your firewall:
console> system dhcp conf-generation-method show
new or old?
we've changed from old to new half a year ago and had no issues since.
Could you please share access ID via DM to further debug?
Regards,
Sanket Shah
Director, Software Development, Sophos Firewall
DHCP configuration generation is related to DHCP server.
Are you saying that changing this generation method helped in resolving "DHCP relay" issue for you?
Regards,
Sanket Shah
Director, Software Development, Sophos Firewall
if it was not fixed in the v20 code, it may have helped, yes.
GES support mentioned, they had seen things happening in the logs that should receive improvement by DEV. Cannot tell exactly what it was.
Would be interesting if Administrator User327 has also REDs configured on the firewall.
Hi,
output is "old"
Hi,
output is "old"