D-Link Forums

The Graveyard - Products No Longer Supported => D-Link NetDefend Firewalls => Topic started by: romerodiaz on June 13, 2011, 04:12:48 PM

Title: DHCP Relay on DFL-800
Post by: romerodiaz on June 13, 2011, 04:12:48 PM

Dear friends, I have a DFL-800 and a L2 switch (DES-3028P). I have configured 3 vlans in the L2 switch, these 3 vlans have the port number 18 as a TAG.
In the DFL-800 I've configured these 3 vlans with their interfaces. The question is, how can I configure the DHCP Relay on the DFL-800? I'm trying to do that but it doesn't work. I've enabled the dhcp relay option on the switch.
Please let me know if anybody can help me.
Thanks in advance.

Luis.

Title: Re: DHCP Relay on DFL-800
Post by: danilovav on June 13, 2011, 07:50:08 PM

Descrive in more details, where and what you configured

Title: Re: DHCP Relay on DFL-800
Post by: romerodiaz on June 14, 2011, 11:05:44 AM

Switch DGS-3426P

config vlan default delete 1-26
create vlan vlan10 tag 10
create vlan vlan20 tag 20
create vlan vlan30 tag 30
config vlan vlan10 add untagged 1-5
config vlan vlan20 add untagged 6-10
config vlan vlan30 add untagged 11-15
config vlan vlan10 add tagged 18
config vlan vlan20 add tagged 18
config vlan vlan30 add tagged 18
save

DFL-800

- Address book --> add
ipif10   192.168.10.1  (vlan10 interface)
ipif10   192.168.20.1  (vlan20 interface)
ipif10   192.168.30.1  (vlan30 interface)
vlan10_net 192.168.10.0/24  (vlan10 net)
vlan10_net 192.168.20.0/24  (vlan20 net)
vlan10_net 192.168.30.0/24  (vlan30 net)

- Interfaces ---> VLAN ----> add

Name: vlan10
interface: lan
vlan ID: 10
IP address: ipif10
Network: vlan10_net


Name: vlan20
interface: lan
vlan ID: 20
IP address: ipif20
Network: vlan20_net

Name: vlan30
interface: lan
vlan ID: 30
IP address: ipif30
Network: vlan30_net

- Rules ---> IP Rules ---> add

Name: vlan10_to_vlan30
Action: Allow
Source interface: vlan10
Source network: vlan10_net
Destination interface: vlan30
Destination network: vlan30_net
Service: all_services

Name: vlan30_to_vlan10
Action: Allow
Source interface: vlan30
Source network: vlan30_net
Destination interface: vlan10
Destination network: vlan10_net
Service: all_services

** Only vlan10 and vlan30 can see each other.

The link between the switch and the firewall in with the TAG port.

In this situation the configuration works fine, I also enabled the dhcp relay in the switch.
According this configuration, I need to know how to configure the DHCP relay in both devices DFL an
switch.

Title: Re: DHCP Relay on DFL-800
Post by: danilovav on June 14, 2011, 01:49:08 PM

I dont see any DHCP server/relay configuation
Where is it located? DFL? Another server?
Just "allow" rules will not affect it because it's special kind of L2 traffic, but IP rules belongs to L3

Title: Re: DHCP Relay on DFL-800
Post by: romerodiaz on June 14, 2011, 03:20:16 PM

 I want to configure the DFL-800 as a DHCP server. As I said, this configuration is working, there are comunication between vlan10 and vlan30, so I need that the DFL-800 becomes a DHCP server for these vlans.

Title: Re: DHCP Relay on DFL-800
Post by: danilovav on June 14, 2011, 07:38:12 PM

So, just make two DHCP servers in System > DHCP > DHCP servers, what's problem?

Title: Re: DHCP Relay on DFL-800
Post by: romerodiaz on June 15, 2011, 01:22:33 PM

This is my question, how do I configure the dhcp server an dhcp relay in this firewall?

Title: Re: DHCP Relay on DFL-800
Post by: danilovav on June 15, 2011, 07:44:02 PM

Why you need relay? Just make DHCP server, it will be enouth