This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

No DHCP Offers in seperate Zone WLAN

Hi there,

today I have faced a weird problem.

I've set up some wireless networks at a customers utm.

All AP's were rolle out to their final location (some of them at the local site, some of them at remote sites)

The remote sites are connected to the main office by MPLS.

All APs showed up in the UTM and had been accepted properly. WLANs are configured as seperate Zone and DHCP Server is configured for this network.

Problem is as following:

Clients in the main office can receive an ip address as expected, clients in the remote office can see SSID and connect but cannot obtain an ip address over DHCP.

 

Any Ideas?

 

Kind regards

Tobias



This thread was automatically locked due to age.
Parents
  • Hi Tobias,

    In addition to Sachin's request, ask your MPLS provider if they're passing the DHCP packets.  Also, an outside possibility, check the Intrusion Prevention log just to confirm that Anti-UDP Flooding isn't causing this problem.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • Hello everybody!

    I have the same problem.

    I have several companys which are connected via SG115 over S2S VPN and RED boxes.
    At the main location we have a SG230 which is the wifi controller for all locations and DHCP server for the guest network.

    Locations which are connected over the RED the guest wifi is working but all locations which are connected over S2S VPN are not.

    The client is asking for an ip adress but the offer does not arrive at the client.

    I already tried to turn of the Anti-UDP Flooding but it did not work.

    Please can you help me?

    Thank you very much.

  • Hi, Christian, and welcome to the UTM Community!

    Are you saying that you have Sophos APs in the remote locations connected via IPsec S2S?  Are you also saying that the Guest SSID fails to deliver DHCP to the clients, but some other SSID works?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • Hello Bob!

    Yes the remote locations are connected via IPSec S2S.
    The other SSIDs are briged into the local network and the clients gets the IP from a local DHCP (Windows Server).
    For this I made an entry in the range options at the DHCP Server:


    The Guest SSID should get the IP from the main firewall which is the wifi controller.
    Locations which are connected with RED boxes the wifi is working.

    Regards Christian

  • Hi Christian,

    Looking at the log lines, the UTM received a discovery and an offer was made. I can see a request from the remote client. Can you verify that?

    Thanks

    Sachin Gurung
    Team Lead | Sophos Technical Support
    Knowledge Base  |  @SophosSupport  |  Video tutorials
    Remember to like a post.  If a post (on a question thread) solves your question use the 'This helped me' link.

Reply Children