Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 0 replies
  • Subscribers 25 subscribers
  • Views 1435 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

[Fresh From the Press: Latest KB's] Sophos XG Firewall: What to do when DHCP relay replies are being dropped by the Firewall

Gowtham Mani

Hi Everyone,

The XG Firewall is configured to be used as a DHCP relay but it is blocking the offers being returned from the DHCP server and dropping as a violation. 

As an example, a Windows Server is configured as a DHCP server. It's IP address is 172.16.16.222 in the 172.16.16.0/24 IP range on eth0. The DHCP client is plugged into eth3 belonging to the network 10.10.3.0/24.

In the scenario above the XG firewall has a DHCP relay configured for eth0 and eth3 both pointing to 172.16.16.222 for the DHCP server. The relay configured for eth0 is not needed to serve IPs and if configured, will cause the XG to drop the DHCPOffer request being served for eth3 thus not forward to it to the client.

This article describes the steps to fix the issue when the Sophos XG Firewall is blocking DHCP offers when used with a DHCP relay.

What to do when DHCP relay replies are being dropped by the Firewall



This thread was automatically locked due to age.