Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 10 replies
  • Answers 2 answers
  • Subscribers 27 subscribers
  • Views 8459 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

DHCP Server With Multiple RED's and VLAN

tscott_16

I have 4 remote locations connected via RED's where clients require access to DHCP on VLAN 20.

I have created the following VLAN interfaces (Port8 is the local LAN interface):

reds1.20 - 10.20.20.1/24
reds2.20 - 10.20.20.2/24
reds3.20 - 10.20.20.3/24
reds4.20 - 10.20.20.4/24
Port8.20 - 10.20.20.8/24

How do I need to set up the DHCP server so that all VLAN 20 clients at the remote locations can access it and obtain a lease?



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to LuCar Toni

    I currently have one DHCP server on Port8 for the XG LAN (no VLAN).

    VLAN 20 is the guest WiFi network which is isolated from the rest of the network and requires different web filtering rules. That's the reason for needing VLAN in the other locations.

    If I were to create a new DHCP server on Port8.20, how would the relay need to be setup to function for the VLAN20 RED interfaces?

  • 0 in reply to tscott_16

    The point is, you cannot use the same subnet on different interfaces. This causes a huge issue in the network. And in this case, you try to do this. But as far as i can read, there is no requirement to use the same network on each red? 

    So basically you could go with following approach: Use the DHCP Server on Port8.20 and create a DHCP relay for each RED.20. Then configure your DHCP Server to serve different pools to each RED, but use other subnets like 192.168.1.1 /24 192.168.2.1/24 etc. 

  • 0 in reply to LuCar Toni

    manbearpig said:

    The point is, you cannot use the same subnet on different interfaces. This causes a huge issue in the network. And in this case, you try to do this. But as far as i can read, there is no requirement to use the same network on each red? 

    So basically you could go with following approach: Use the DHCP Server on Port8.20 and create a DHCP relay for each RED.20. Then configure your DHCP Server to serve different pools to each RED, but use other subnets like 192.168.1.1 /24 192.168.2.1/24 etc. 

     

     

    I see. I thought since they needed to share a DHCP server I could just put them all on the same subnet.
    I have changed the VLAN interfaces as follows:

    reds1.20 - 10.4.20.1 /24
    reds2.20 - 10.6.20.1 /24
    reds3.20 - 10.3.20.1 /24
    reds4.20 - 10.7.20.1 /24
    Port8.20 - 10.1.20.1 /24

     

    Now, if I create DHCP on Port8.20, how do the relays need to be configured for each RED.20? When creating a relay, it seems it won't accept the IP of an interface that already has a DHCP server bound to it but I'm not sure how else would you point the relay to the correct DHCP server?

  • +1 in reply to tscott_16

    Do you have a DHCP Server on Port8.20 or do you mean the "onboard" DHCP Server of XG? 

    If onboard, you cannot use 1 DHCP server and relay this to every other Interface. The DHCP Relay option is only for extern DHCP Server (like windows servers). 

    So use the onboard XG dhcp server and create for each VLAN an own DHCP server on xg. 

  • 0 in reply to LuCar Toni

    manbearpig said:

    If onboard, you cannot use 1 DHCP server and relay this to every other Interface. The DHCP Relay option is only for extern DHCP Server (like windows servers). 

     

    Yes, I was trying to use onboard... that explains a lot of my trouble! So without an external server to relay to, there's no way to share a single onboard DHCP server with all of the VLAN.20 interfaces?

  • 0 in reply to tscott_16

    Basically it will use one DHCP module. 

    If you create for every interface a new DHCP "Server", XG will create just a new Pool for you. 

  • 0 in reply to LuCar Toni

    That makes sense. It's using one server, just creating a separate pool for each interface. Still, there's no way to share a pool between interfaces?

    There are two reason for wanting to share a pool:

    1. The remote locations are actually in close proximity to each other, enough so that sometimes wireless clients will roam between two locations. It would be nice if they could roam without switching subnets.

    2. Keeping configuration to a minimum in a network that is already more complicated that I'd like it to be.

     

    If creating separate pools is as good as it gets, I can work with that.

  • 0 in reply to tscott_16

    As mentioned before, this will cause the worst case to share the pool. You would have to use a bridge and bridge everything together.

    After bridging everything, you have to deal with the ARP / broadcast etc. 

    This is most likely not the best solution and i would use different DHCP pools.

    And please enable DHCP Global: https://community.sophos.com/kb/en-us/123952

  • 0 in reply to LuCar Toni

    Thank you very much. You've given me a much better understanding of how DHCP works on the XG.