Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4669
Views
0
Helpful
6
Replies

DHCP relay on SG350

snowflocke
Level 1
Level 1

‎01-01-2021 04:59 AM

Hey I have an issue with the dhcp relay on my sg350. To break it down I have two VLANs on the Switch,those are connected through a Opnsense Firewall. Traffic von VLAN50 to VLAN30 is unrestricted, the DHCP Server is on VLAN30. I made a Scope for the VLAN50 Network and configured the relay agent, but it didnt work (Also tried it on the Firewall without success). Im a bit out of ideas right now, so maybe someone here could help.

 

I made some Screenshots for better understanding:

https://imgur.com/a/NCxgWio

1 person had this problem
Labels:
0 Helpful
6 Replies 6

snowflocke
Level 1
Level 1

‎01-01-2021 10:22 AM

I followed that guide but couldnt make it work

https://imgur.com/a/qIK1lDH

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame

‎01-01-2021 11:45 AM

You can Login to SSH and can you post-show run from the device :

 

(config)#int vlan 50

(config-if)#ip helper-address 192.168.30.11

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

snowflocke
Level 1
Level 1

‎01-01-2021 01:02 PM

that looks like an ios statement for me. this is the relevant config, Vlan 30 an 50 are seperated by an opnsense, with trafic from vlan 50 to 30 unrestricted.

 

ip dhcp relay address 192.168.30.11
ip dhcp relay enable
interface vlan 20
name DMZ
ip dhcp relay enable

interface vlan 30
name SERVER
ip address 192.168.30.5 255.255.255.0
ip dhcp relay enable

interface vlan 50
name LAN
ip address 192.168.50.5 255.255.255.0
ip dhcp relay enable

interface Port-Channel1
flowcontrol on
loopback-detection enable
description ESXI
no snmp trap link-status
ip dhcp snooping trust
switchport mode trunk
switchport trunk native vlan none
switchport trunk allowed vlan remove 1-9,11-19,21-29,31-49,51-4094

ip dhcp snooping
ip dhcp snooping database
ip dhcp snooping information option allowed-untrusted

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to snowflocke

‎01-01-2021 05:08 PM

I am more interested to know more information -"Vlan 30 an 50 are separated by an opnsense"

 

1. is the SG350 setup as Layer3 mode - by default, it wil be Layer 2 only

2. where is the DHCP Server is this in the SG350 or outside?

3. do you have reachability from that VLAN you trying to get DHCP Address?

 

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

snowflocke
Level 1
Level 1

‎01-02-2021 01:55 AM

I dont have IPv4 Routing activated on the switch. The sg 350 soesnt have a layer 2/3 switch like the predeccessor. Both vlans have a IP interface. When Im in vlan 50 and give myself a static address I can reach the dhcp router.

0 Helpful
Customers Also Viewed These Support Documents