Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 2 replies
  • Subscribers 26 subscribers
  • Views 6714 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

DHCP Issue on RED segment for clients with DHCP reservation on LAN

LeonJansen

While testing a RED15W connected to a XG I ran into a strange issue that I would like to share with the community. Some of my clients were not receiving an ip address while a static ip assignment on these devices gave them normal access.

It turns out that clients with a DHCP reservation on the LAN segment behind the XG do not receive an IP address if they connect to the (wired or wireless) segment behind the RED.

A few details on my configuration and used firmware versions: I am using SFOS 16.01.2 on the XG and RED Firmware 2.0.005

Anyone else who ran into this issue, is it perhaps a known issue/bug, is there a solution or workaround?

The whole DHCP functionality for the RED seems to be a limited since the option to add reservations is missing for the RED scope. I did find a feature request to add this functionality here: https://community.sophos.com/products/xg-firewall/v16beta/f/sfos-v16-beta-feature-requests/80681/dhcp-static-mapping-support-for-scopes-delivered-by-red-units



This thread was automatically locked due to age.
  • +1

    Leon,

    this is strange! If a computer receives an ip from the dhcp server configured on XG, it wil not receive another ip on another lan (so another dhcp server), unitl the lease expires.

    Make sure to enable the dhcp global option from console:

    system dhcp static-entry-scope global.

    It is strange that devices behind the red do not receive an ip address.

    Any logs?

    Thanks

  • 0 in reply to lferrara

    Hi Luk,

     

    thanks for responding and your suggestion was spot on!

    My XG was set to:  dhcp static-entry-scope network  and as soon as i switched it towards global the reserved client does receive an ip address behind the RED. The problem was easy to reprocude, restoring the setting back to network and my client did no longer receive an offer from the dhcp server.

    To clarify, I am using the onboard DHCP server on the XG for both the LAN and the segment behind the RED as part of my test-setup.

    Regarding the logging, there is still room for improvement there, there seems to be barely any logging in the system log around the activity between the RED and the XG.

    Now move on to the next issue, why does the integrated access-point of the RED15W suddenly shows up as "inactive", probabably a question for a new thread.

    regards

    Leon