Difference between revisions of "DHCP Relay configuration example"

From Teltonika Networks Wiki
 
(6 intermediate revisions by 3 users not shown)
Line 1: Line 1:
==Introduction==
+
<p style="color:red">The information on this page is updated in accordance with the [https://wiki.teltonika-networks.com/view/FW_%26_SDK_Downloads'''00.07.08'''] firmware version .</p>
'''DHCP Relay''' is a router that forwards IP addresses from the DHCP Server to the user devices, even if the server is on a different network. The main benefit of this approach is that a single DHCP Server can distribute IP addresses to multiple networks. Bellow you will find an example of how to configure a basic DHCP Relay configuration.
+
===Introduction===
 +
----
 +
DHCP Relay is a router that forwards IP addresses from the DHCP Server to the user devices, even if the server is on a different network. The main benefit of this approach is that a single DHCP Server can distribute IP addresses to multiple networks. Bellow you will find an example of how to configure a basic DHCP Relay configuration.
 +
 +
===Prerequisites & Topology===
 +
----
 +
====Prerequisites====
 +
#For this configuration you will need 2 routers. One as a DHCP Server and the other as a DHCP Relay.
 +
#DHCP Relay device WAN port needs to be connected to DHCP server LAN port.
  
==Configuration overview and prerequisites==
+
====Topology====
 +
----
 +
DHCP server network settings:
 +
LAN IP/subnet: 192.168.4.1/24
 +
 
 +
DHCP Relay network settings:
 +
 
 +
LAN IP/subnet: 192.168.2.1/24
 +
WAN IP: 192.168.4.194
 +
 
 +
The DHCP relay service enables the forwarding of DHCP broadcast messages to network segments that a client computer is not directly connected to. It allows a single DHCP server to be shared across different logical network segments separated by a firewall. Unlike handling IP addresses, the DHCP relay service sends unicast messages rather than broadcast messages.
 +
 
 +
When a client needs a DHCP-assigned IP address, it broadcasts a request to the network attached to its interface. The DHCP relay service on the firewall intercepts this request on an interface connected to the same network, such as LAN 192.168.2.0/24. The relay service then unicasts the request to all configured DHCP servers in the LAN and receives an IP address offer from a DHCP server (e.g., 192.168.4.1) that has a range of addresses configured for the client's network segment (e.g., 192.168.2.0/24). This offer is forwarded to the client. If the client accepts the offer, it acknowledges the DHCP address and assigns it to its interface immediately.
 +
 
 +
[[File:708576_Topo.png|border|class=tlt-border| center|1000px]]
 +
 
 +
===Configuration===
 +
----
 +
{{Template:Networking_rutos_manual_basic_advanced_webui_disclaimer
 +
| series = RUTX
 +
}}
 +
 
 +
====DHCP Server Configuration====
 +
----
 +
=====LAN Configuration=====
 +
Open router’s '''WebUI → Network → LAN''' click [[File:Pencil2.png]]on current available LAN interface configuration:
 +
 
 +
======General Settings======
 +
----
 +
Make the following changes:
 +
# Enter IPv4 address: '''192.168.4.1'''
 +
 
 +
[[File:DHCP_RELAY_1_1.png|border|class=tlt-border|center]]
 +
 
 +
=====Lease Configuration=====
 +
----
 +
Open router’s '''WebUI → System → Mantenance → CLI'''
 +
 
 +
Enter this command to CLI:
  
For this configuration you will need 2 routers. One as a DHCP Server and the other as a DHCP Relay.
+
echo "dhcp-range=192.168.2.100,192.168.2.200,12h" >> /etc/dnsmasq.conf
  
'''Prerequisites:'''
+
[[File:DHCP_RELAY_2.png|border|class=tlt-border|center|1100px]]
  
DHCP Relay device WAN port needs to be connected to DHCP server LAN port.
+
=====Static Route Configuration=====
 +
----
 +
Open '''WebUI → Network → Routing → Static routes'''
  
DHCP Relay network settings:
+
======Static IPv4 Routes======
 +
----
 +
click [[File:Add Button.png|40x70px]] and apply this to the route:
 +
#Select Interface: ''' lan''' | Enter Target: '''192.168.2.0''' | Enter IPv4-Netmask: '''255.255.255.0''' | Enter IPv4-Gateway: '''192.168.4.194'''
  
LAN IP/subnet: 192.168.2.1/24
+
[[File:DHCP_RELAY_3.png|border|class=tlt-border|center|1100px]]
WAN IP: 192.168.4.194
 
  
DHCP server network settings:
+
====DHCP Relay Configuration====
 +
----
 +
=====Relay WAN Confiuration=====
 +
----
 +
Open router’s '''WebUI → Network → WAN → WAN interfaces''' click [[File:Pencil2.png]]current available WAN interface configuration:
 +
======General Settings======
 +
----
 +
Make the following changes:
  
LAN IP/subnet: 192.168.4.1/24
+
# Select Protocol: '''Static'''
 +
# Enter IPv4 address: '''192.168.4.194'''
  
'''Configuration scheme:'''
+
[[File:DHCP_RELAY_7.png|border|class=tlt-border|center|1000px]]
  
[[File:Networking_rutx_manual_lan_static_dhcp_server_relay_scheme_v2.png|border|class=tlt-border]]
+
=====Relay LAN Confiuration=====
 +
Open router’s '''WebUI → Network → LAN''' click [[File:Pencil2.png]]current available LAN interface configuration:
 +
======General Settings======
 +
----
 +
Make the following changes:
  
 +
# Enter IPv4 address: '''192.168.2.1'''
  
==Configuration Steps==
+
[[File:DHCP_RELAY_4.png|border|class=tlt-border|center]]
  
1. Enable DHCP Relay feature on device which will relay DHCP requests. In WebUI navigate to '''Network -> Interface -> LAN -> DHCP Server''' and change '''Enable DHCP''' field value from Enable to Relay and then type in the DHCP Server IP address and click on Save & Apply.
+
=====Firewall Rule Configuration=====
 +
Open router’s '''WebUI → Network → Firewall → Traffic Rules''' click [[File:Pencil2.png]] on Allow-DHCP-Renew rule:
 +
======Firewall - Traffic Rules - Allow-DHCP-Renew======
 +
----
 +
# Enter Destination Port: '''67'''  
  
[[File:Networking_rutx_manual_lan_static_dhcp_server_dhcp_relay_configuration_v1.png|border|class=tlt-border]]
+
[[File:DHCP_RELAY_8.png|border|class=tlt-border|center]]
  
2. Modify Enable-DHCP-renew firewall rule in '''Network -> Firewall -> Traffic rules''' to additionally allow destination port 67.
 
  
[[File:Networking_rutx_manual_firewall_trafic_rules_configuration_for_dhcp_relay_v1.png|border|class=tlt-border]]
 
  
3. DHCP Server must be able to assign addresses from 192.168.2.0/24 IP address pool. If DHCP Server is a Teltonika device running RUTOS then you can add this address pool via router's CLI by running command:
+
=====DHCP Replay Configuration=====
 +
----
 +
Open router’s '''WebUI → Network → DHCP Server Settings → IPv4 → DHCPv4 servers''' click [[File:Pencil2.png]]current available server interface configuration:
 +
======DHCPv4: lan======
 +
----
 +
Make the following changes:
  
echo "dhcp-range=192.168.2.100,192.168.2.200,12h" >> /etc/dnsmasq.conf
+
# Enable: '''on'''
 +
# Select DHCPv4 mode: '''Relay'''
 +
# Enter DHCP server address: '''192.168.4.1'''
  
* 192.168.2.100 - specifies start of DHCP address pool range
+
[[File:DHCP_RELAY_5.png|border|class=tlt-border|center|1000px]]
* 192.168.2.200 - specifies end of DHCP address pool range
 
* 12h - specifies DHCP lease time
 
  
4. In this topology DHCP Server has no route to DHCP Relay's network so it must be added manually. Static route can be added via '''Network -> Routing -> Static IPv4 routes'''.
+
===Testing the configuration===
 +
----
 +
Navigate to the Open DHCP server's '''WebUI -> Status -> Network -> LAN'''. If the configuration is successful, the lease for the 192.168.2.0/24 network should be displayed in the WebUI DHCP lease list.
  
[[File:Networking_rutx_manual_routing_ip4_static_routes_configuration_v1.png|border|class=tlt-border]]
+
[[File:DHCP_RELAY_11.png|border|class=tlt-border|center|1000px]]
  
* Interface: Network interface where DHCP Relay resides
 
* Target: Network of DHCP Relay
 
* IPv4 netmask: Subnet of DHCP Relay network
 
* IPv4 Gateway: IP address of DHCP relay interface which is connected to DHCP Server
 
  
  
==Additional notes==
 
  
 +
===Additional notes===
 +
----
 
'''Note:''' It's strongly recommended to use static IP configuration for DHCP Relay WAN interface otherwise there might be cases when WAN interface will receive new IP address which will cause static route to stop working.
 
'''Note:''' It's strongly recommended to use static IP configuration for DHCP Relay WAN interface otherwise there might be cases when WAN interface will receive new IP address which will cause static route to stop working.
 +
 +
[[Category:Router control and monitoring]]

Latest revision as of 14:44, 5 August 2024

Main Page > General Information > Configuration Examples > Router control and monitoring > DHCP Relay configuration example

The information on this page is updated in accordance with the 00.07.08 firmware version .

Introduction


DHCP Relay is a router that forwards IP addresses from the DHCP Server to the user devices, even if the server is on a different network. The main benefit of this approach is that a single DHCP Server can distribute IP addresses to multiple networks. Bellow you will find an example of how to configure a basic DHCP Relay configuration. ​

Prerequisites & Topology


Prerequisites

  1. For this configuration you will need 2 routers. One as a DHCP Server and the other as a DHCP Relay.
  2. DHCP Relay device WAN port needs to be connected to DHCP server LAN port.

Topology


DHCP server network settings:

LAN IP/subnet: 192.168.4.1/24 

DHCP Relay network settings:

LAN IP/subnet: 192.168.2.1/24
WAN IP: 192.168.4.194

The DHCP relay service enables the forwarding of DHCP broadcast messages to network segments that a client computer is not directly connected to. It allows a single DHCP server to be shared across different logical network segments separated by a firewall. Unlike handling IP addresses, the DHCP relay service sends unicast messages rather than broadcast messages.

When a client needs a DHCP-assigned IP address, it broadcasts a request to the network attached to its interface. The DHCP relay service on the firewall intercepts this request on an interface connected to the same network, such as LAN 192.168.2.0/24. The relay service then unicasts the request to all configured DHCP servers in the LAN and receives an IP address offer from a DHCP server (e.g., 192.168.4.1) that has a range of addresses configured for the client's network segment (e.g., 192.168.2.0/24). This offer is forwarded to the client. If the client accepts the offer, it acknowledges the DHCP address and assigns it to its interface immediately.

708576 Topo.png

Configuration


If you're having trouble finding this page or some of the parameters described here on your device's WebUI, you should turn on "Advanced WebUI" mode. You can do that by clicking the "Advanced" button, located at the top of the WebUI.

Networking rutos manual webui basic advanced mode 75.gif

DHCP Server Configuration


LAN Configuration

Open router’s WebUI → Network → LAN click Pencil2.pngon current available LAN interface configuration:

General Settings

Make the following changes:

  1. Enter IPv4 address: 192.168.4.1
DHCP RELAY 1 1.png
Lease Configuration

Open router’s WebUI → System → Mantenance → CLI

Enter this command to CLI:

echo "dhcp-range=192.168.2.100,192.168.2.200,12h" >> /etc/dnsmasq.conf
DHCP RELAY 2.png
Static Route Configuration

Open WebUI → Network → Routing → Static routes

Static IPv4 Routes

click Add Button.png and apply this to the route:

  1. Select Interface: lan | Enter Target: 192.168.2.0 | Enter IPv4-Netmask: 255.255.255.0 | Enter IPv4-Gateway: 192.168.4.194
DHCP RELAY 3.png

DHCP Relay Configuration


Relay WAN Confiuration

Open router’s WebUI → Network → WAN → WAN interfaces click Pencil2.pngcurrent available WAN interface configuration:

General Settings

Make the following changes:

  1. Select Protocol: Static
  2. Enter IPv4 address: 192.168.4.194
DHCP RELAY 7.png
Relay LAN Confiuration

Open router’s WebUI → Network → LAN click Pencil2.pngcurrent available LAN interface configuration:

General Settings

Make the following changes:

  1. Enter IPv4 address: 192.168.2.1
DHCP RELAY 4.png
Firewall Rule Configuration

Open router’s WebUI → Network → Firewall → Traffic Rules click Pencil2.png on Allow-DHCP-Renew rule:

Firewall - Traffic Rules - Allow-DHCP-Renew

  1. Enter Destination Port: 67
DHCP RELAY 8.png


DHCP Replay Configuration

Open router’s WebUI → Network → DHCP → Server Settings → IPv4 → DHCPv4 servers click Pencil2.pngcurrent available server interface configuration:

DHCPv4: lan

Make the following changes:

  1. Enable: on
  2. Select DHCPv4 mode: Relay
  3. Enter DHCP server address: 192.168.4.1
DHCP RELAY 5.png

Testing the configuration


Navigate to the Open DHCP server's WebUI -> Status -> Network -> LAN. If the configuration is successful, the lease for the 192.168.2.0/24 network should be displayed in the WebUI DHCP lease list.

DHCP RELAY 11.png



Additional notes


Note: It's strongly recommended to use static IP configuration for DHCP Relay WAN interface otherwise there might be cases when WAN interface will receive new IP address which will cause static route to stop working.