Thread Info
  • State Suggested Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 8 replies
  • Answers 1 answer
  • Subscribers 3 subscribers
  • Views 13887 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

DHCP Relay with seperate interface

twister5800
Hi,

Have used DHCP Relay before with success (in switches), but this configuration seems to get me in trouble, maybe the UTM does not support this, but I hope you guys can shed some light into this [:)]

Network is connected like this:

LAN:
Network 10.30.32.0/21
SERVER 10.30.32.5 (WINDOWS 2008 AS DC AND DNS,DHCP)
UTM 10.30.32.1

On the LAN are also Sophos accesspoints connected.

SSID: WORK (AP'S BRIDGE TO LAN)

SSID: GUESTS (AP'S USE SEPERATE INTERFACE)

Seperate interface WLAN0:
Network: 10.20.32.0/21

DHCP RELAY ENABLED:
SERVER TO RELAY TO IS 10.30.32.5
INTERFACE TO RELAY FROM IS: SEPERATE INTERFACE (WLAN0)

Server has two dhcp scopes, on for LAN range and one for the WLAN0 interface IP range.

Problem is that when clients connect to the guest network, they get wifi access, but no DHCP traffic is transmitted.
if I enable the DHCP server in UTM on the WLAN0 interface, everything works.

Doesn't the DHCP RELAY function in the UTM work as a "DHCP HELPER" as known from ex. Cisco switches??

If not, is this config possible anyway?

UTM is using 9.209 but the issue is the same with 9.302


This thread was automatically locked due to age.
Parents
  • 0
    Martin, I am relatively new to the Astaro world, but I am currently doing DHCP relay on my L3 switch and using the UTM as my DHCP server.  If I understand the DHCP relay setup requirements correctly on Sophos UTM, all interfaces involved in the DHCP relay have to be specified. Do you also have the interface to the DHCP server listed in the "Interfaces" box?

    DHCP RELAY ENABLED:
     SERVER TO RELAY TO IS 10.30.32.5
     INTERFACE TO RELAY FROM IS: SEPERATE INTERFACE (WLAN0)

    Will

    --------------------
    Sophos UTM / Sophos XG Firewall home user

    Private: Virtual UTM 9.3, ESXi 6.0: 2 vCPUs, 8GB RAM, 120GB vHDD, 3 vNICs

    Private: Virtual Sophos XG Firewall, ESXi 6.0: 1 vCPU, 4vCores, 6GB RAM, 80/4 GB vHDD, 3 vNICs

    ESXi 6.0 Host: SuperMicro C7Z97-OCE, Core I5-4690 3.5 GHz, 32GB RAM, NICS: I217-V, I210, I340-T4

  • +1 in reply to Will32
    Thanks to you both for replying!

     Do you also have the interface to the DHCP server listed in the "Interfaces" box?


    Exactly THIS fixed my problems, now it works out of the box and it's stable!! [;)]

    Should have read the manual more thoroughly [8-)]:

    Add the interfaces involved.

    Add the interface to the DHCP server as well as all interfaces to the clients' network(s) between which DHCP requests and responses should be forwarded.


    Again THANKS [:)]

    -----

    Best regards
    Martin

    Sophos XGS 2100 @ Home | Sophos v20 Architect

Reply
  • +1 in reply to Will32
    Thanks to you both for replying!

     Do you also have the interface to the DHCP server listed in the "Interfaces" box?


    Exactly THIS fixed my problems, now it works out of the box and it's stable!! [;)]

    Should have read the manual more thoroughly [8-)]:

    Add the interfaces involved.

    Add the interface to the DHCP server as well as all interfaces to the clients' network(s) between which DHCP requests and responses should be forwarded.


    Again THANKS [:)]

    -----

    Best regards
    Martin

    Sophos XGS 2100 @ Home | Sophos v20 Architect

Children
No Data
Unfiltered HTML