SRX

last person joined: 15 hours ago 

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

  • 1.  DHCP-Relay with JDHCP with chassis-cluster and routing-instance over vpn

    Posted 04-27-2017 02:11

    Hi all,

     

    so let me explain you my setup.

    I am running a SRX-Cluster with two SRX300 (15.1X49-D70.3).

    The SRX-Cluster is located in branch-office and is connected over VPN to the central-office.

    The client in branch office should recveive an IP-Adress from a DHCP-Server which is placed in central office.

     

    Clients----[SRX300]------(VPN)------[HUB]-----(Dhcp-Server)

     

    I now try to migrate to new JDHCP-config:

     

    So, the old and working configuration looked like this:

    helpers {
    traceoptions {
        file DebugForwardingVlan0 size 1m files 5 world-readable;
        level all;
        flag bootp;
        flag util;
    }
    bootp {
        relay-agent-option;
        server X.X.Y.Z routing-instance CUSTOMER;
        maximum-hop-count 15;
        minimum-wait-time 3;
        vpn;
        interface {
            reth1.0;
        }
    }
}

     

    And the new, but not working configuration lookes like this:

     

    root@SRX> show configuration routing-instances CUSTOMER
description CUSTOMER-INSTANCE;
instance-type virtual-router;
interface reth1.0;
interface st0.0;
routing-options {
    static {
        route 0.0.0.0/0 next-hop st0.0;
    }
}
forwarding-options {
    dhcp-relay {
        relay-option;
        vpn;
        server-group {
            DHCPSERVER {
                X.X.Y.Z;
            }
        }
        active-server-group DHCPSERVER;
        group DHCPSERVER {
            interface reth1.0;
        }
    }
}

     

     

    The DHCP-Server is reachable within this routing-instance, but no dhcp-request seems to be transmitted.
    I also tried the "forward-only" option, but it was also not working.

     

    So please tell me, how I to migrate the old settings to the new JDHCP-Style.

     

    Thanks a lot and have a nice day.

     

    Cheers, Christoph.



  • 2.  RE: DHCP-Relay with JDHCP with chassis-cluster and routing-instance over vpn

    Posted 04-27-2017 04:56

    Update:

    It seems, the device tries to reach the DHCP-Server over the ST0-Interface-Ip-Adress and not with source IP-Adress of the reth1.0 interface.

    Is there an additional possibilty to select which source-IP should be chossen for the relay-request ?

     

    Thanks, Christoph.



  • 3.  RE: DHCP-Relay with JDHCP with chassis-cluster and routing-instance over vpn
    Best Answer

    Posted 04-27-2017 07:40

    Just want to let you know, the issue is fixed.

     

        forwarding-options {
        dhcp-relay {
            relay-option-82 {
                circuit-id;
            }
            server-group {
                CUSTOMER {
                    X.X.Y.Z;
                }
            }
            active-server-group CUSTOMER;
            group CUSTOMER {
                interface reth1.0;
            }
        }
    }

    Maybe useful for some of you.