SRX Services Gateway
Highlighted
SRX Services Gateway

SRX300 PROBLEMS TO PROPAGATE DHCP WITH VLANS

‎08-03-2017 02:51 PM

I HAVE PROBLEMS TO SPREAD DHCP TO A SWITCH ON AN SRX 300 AND SO I CAN PROVIDE DHCP TO AN AP WITH THREE VLAN'S TRAVELING IN GE-0/0/4 PORT. AT THE BEGINNING I DO NOT PROPAGATE THE VLAN'S THROUGH THE PORT, BUT AFTER I CHANGE THE SRX TO SWITCH MODE AND I START TO SPREAD THE VLANS, BUT THE DHCP AND THE POOL ARE ALREADY ALLOCATED AND THE DHCP IS BOUND BY THE PORT GE-0/0 / 2, BUT DOES NOT THE DHCP, ANY IDEA THAT HAPPENS WITH THE SRX300?

 

REGARDS

8 REPLIES 8
Highlighted
SRX Services Gateway

Re: SRX300 PROBLEMS TO PROPAGATE DHCP WITH VLANS

‎08-03-2017 02:58 PM

Can you please provide the configuration you are using?  I have gotten DHCP working on my SRX 300 with vlans.

Highlighted
SRX Services Gateway

Re: SRX300 PROBLEMS TO PROPAGATE DHCP WITH VLANS

‎08-03-2017 03:15 PM

        dhcp {

            traceoptions {

                file dhcp.dbg;

                flag all;

            }

            pool 192.168.230.192/27 {

                address-range low 192.168.230.194 high 192.168.230.222;

                maximum-lease-time 600;

                default-lease-time 600;

                name-server {

                    8.8.8.8;

                    4.2.2.2;

                }

                domain-search {

                    wirelessd;

                }

                router {

                    192.168.230.193;

                }

            }

            pool 192.168.230.224/27 {

                address-range low 192.168.230.226 high 192.168.230.254;

                maximum-lease-time 600;

                default-lease-time 600;

                name-server {

                    8.8.8.8;

                }

                domain-search {

                    Wirelessc;

                }

                router {

                    192.168.230.225;

                }

            }

            pool 192.168.230.160/28 {

                address-range low 192.168.230.162 high 192.168.230.174;

                maximum-lease-time 86400;

                default-lease-time 86400;

                name-server {

                    8.8.8.8;

                    4.2.2.2;

                }

                domain-search {

                    arrendadora;

                }

                router {

                    192.168.230.161;

                }

            }

            pool 192.168.230.176/28 {

                address-range low 192.168.230.178 high 192.168.230.190;

                maximum-lease-time 86400;

                default-lease-time 86400;

                name-server {

                    8.8.8.8;

                    4.2.2.2;

                }

                domain-search {

                    proveedores;

                }

                router {

                    192.168.230.177;

                }

            }

            propagate-settings ge-0/0/2;

 

 

 

 

                ge-0/0/4.0 {

                    host-inbound-traffic {

                        system-services {

                            ssh;

                            all;

                        }

                        protocols {

                            all;

                        }

                    }

                }

 

protocols {

    ospf {

        area 0.0.0.0 {

            interface ge-0/0/3.0;

            interface st0.0 {

                interface-type p2p;

                priority 10;

            }

            interface st0.1;

 

 

 

        }

        area 0.0.0.1 {

            interface irb.11;

            interface irb.12;

            interface irb.13;

            interface irb.14;

            interface irb.15;

            interface ge-0/0/0.0;

        }

    }

    l2-learning {

        global-mode switching;

Highlighted
SRX Services Gateway

Re: SRX300 PROBLEMS TO PROPAGATE DHCP WITH VLANS

‎08-03-2017 03:29 PM

I would recommend trying JDHCP instead of DHCP.


set system services dhcp-local-server group wirelessd interface irb.x
set system services dhcp-local-server group wirelessc interface irb.y
set system services dhcp-local-server group arrendadora interface irb.z

...

 

set access address-assignment pool wirelessd family inet network 192.168.230.192/27
set access address-assignment pool wirelessd family inet range low low 192.168.230.194
set access address-assignment pool wirelessd family inet range low high 192.168.230.222
set access address-assignment pool wirelessd family inet dhcp-attributes domain-name wirelessd
set access address-assignment pool wirelessd family inet dhcp-attributes name-server 8.8.8.8
set access address-assignment pool wirelessd family inet dhcp-attributes name-server 4.2.2.2
set access address-assignment pool wirelessd family inet dhcp-attributes router 192.168.230.193

 

etc.  Make sure that the pool name matches the group in dhcp-local-server.

Highlighted
SRX Services Gateway

Re: SRX300 PROBLEMS TO PROPAGATE DHCP WITH VLANS

‎08-04-2017 10:18 AM

Note - 

 

You cannot mix JDHCP and DHCP on the same machine - DHCP is being phased out, so better to adapt to JDHCP.

 

My isolated guest network clients gets passed straight through from AP to switch to SRX and out to the internet via PPPoE. The APs allocate the guest IPs. If I need to look at what is going on with the guests, they have a separate management system, which also handles the analytics.

 

 

Highlighted
SRX Services Gateway

Re: SRX300 PROBLEMS TO PROPAGATE DHCP WITH VLANS

‎08-09-2017 06:52 AM

Hi 

Thanks for your reply, but my access point is from the brand aruba and i did some test with technician personal of juniper and the srx300 recognized the mac of the app but when the srx 300 send the acknowledge, app didnt responded me this, and when i connect with the srx with switch an then connect with app aruba i can recieve ping with other device that they were connect with the app until the srx.

 

Highlighted
SRX Services Gateway

Re: SRX300 PROBLEMS TO PROPAGATE DHCP WITH VLANS

‎08-09-2017 06:55 AM

Hi

 

what version of the srx300 i need to work good with the jdhcp

Highlighted
SRX Services Gateway

Re: SRX300 PROBLEMS TO PROPAGATE DHCP WITH VLANS

‎08-09-2017 10:39 AM

To quote the release notes - 

 

Starting with Junos OS Release 15.1X49-D60, the legacy DHCPD (DHCP daemon)
configuration on all SRX Series devices is being deprecated and only the new JDHCP
CLI will be supported. When you upgrade to Junos OS Release 15.1X49-D60 and later
releases on a device that already has the DHCPD configuration, the following warning
messages are displayed:
WARNING: The DHCP configuration command used will be deprecated in future Junos
releases.
WARNING: Please see documentation for updated commands.

 

However, as I chase down certain features, I find that each new release is an improvement on the previous, for what I want it to do, so I am now on -D100, and happier.

Highlighted
SRX Services Gateway

Re: SRX300 PROBLEMS TO PROPAGATE DHCP WITH VLANS

‎08-25-2017 06:21 PM
You need the "services dhcp-local-server" statement. With "group" most likely.