NGX Gateway & DHCP Relay Agent

ilmaz · #1 (**permalink**) 2006-04-10

Hi evb,

I'm looking forward to make se of the NGX SPLAT's DHCP Relay Agent option configurable through Sysconfig.

I've got a DHCP/DNS Server available in my DMZ (eth1) and would like to let my clints from Net1 (eth2) and Net2 (eth3) to recieve automatic IP config from that DMZ DHCP server.

Through Sysconfig I configured the DHCP Relay Agent option and specified eth2 & eth3 to operate as DHCP Relay agents and I also configured DHCP Server's address accessible through eth1 properly. Then I added rule to allow dehcp-req-localmodule, dhcp-rep-localmodule, and bootp services to be allowed from Net1 & Net2 to the SPLAT Gateway.

However, it staill doesn't work and I can see that dhcp-req-localmodule is being dropped by the SPLAT Gateay, anybody has any idea how to get it working??????

Regards,
Ilmaz

yipster · #2 (**permalink**) 2006-05-01

you need to setup a static NAT to allow the private network to see the dmz dhcp server

chillyjim · #3 (**permalink**) 2006-05-02

Quote:

Originally Posted by ilmaz

Hi evb,

I'm looking forward to make se of the NGX SPLAT's DHCP Relay Agent option configurable through Sysconfig.

...

It's broken, AFAIK it hasn't been kixed in an HFA but I may be wrong. You should be able to remove the DHCPD package and add the one from the R55 CD's.

yipster · #4 (**permalink**) 2006-05-09

Jim,

Where is the DHCPD located in the R55 disc

kva.kva · #5 (**permalink**) 2006-05-10

SecurePlatform\RPMS\dhcpcd-1.3.18pl8-14cp.i386.rpm

yipster · #6 (**permalink**) 2006-05-10

I had to call tech support to email me the dhcrelay file which replaces the one in /usr/sbin directory.

yipster · #7 (**permalink**) 2006-11-18

DHCP Relay doesn't work in R62 same problem in R60. I had to use dhcrelay file inorder for it to work. What is going on with Checkpoint.

hono222 · #8 (**permalink**) 2007-01-17

Hi,

It does work in R60...it works for me

dr-spoof · #9 (**permalink**) 2007-03-01

In VSX I had to create static NAT from the wrp interfaces to the inside real address for udp 68 for this to work properly. The windows fw was having a hard time due to the original PATing and the port numbers instead of being 68 were some high numbers generally starting around 700 and up. This is all on SPLAT.

I have it working well so far in a remote server situation, but it's not working in a multi-vlan case where the server is on one vlan and the host on another on the same VS. This message shows up in the messages file.

kernel: FW-1: fwx_handle_dhcp_payload: ld_set(fwx_dhcp_relay) failed

No one knows what it is.

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode