I 've configured DHCP relay on EX4300 but DHCP message is not be forwarded to DHCP server.
Here is my configuration.
set forwarding-options dhcp-relay server-group CP 10.1.2.99set forwarding-options dhcp-relay server-group CP 10.1.3.254set forwarding-options dhcp-relay active-server-group CPset forwarding-options dhcp-relay group server active-server-group CPset forwarding-options dhcp-relay group server interface irb.27 < VLAN27 = Client' vlan
root# run show dhcp relay statisticsPackets dropped:Total 0
Messages received:BOOTREQUEST 309DHCPDECLINE 0DHCPDISCOVER 309DHCPINFORM 0DHCPRELEASE 0DHCPREQUEST 0DHCPLEASEACTIVE 0DHCPLEASEUNASSIGNED 0DHCPLEASEUNKNOWN 0DHCPLEASEQUERYDONE 0
Messages sent:BOOTREPLY 0DHCPOFFER 0DHCPACK 0DHCPNAK 0DHCPFORCERENEW 0DHCPLEASEQUERY 0DHCPBULKLEASEQUERY 0
Please check Your lo0.0 filter to allow udp ports 67,68
Also, we can check this output to see the BOOTP requests sent out to server and BOOTP replies received:
monitor traffic interface <egress_interface_towards_server> no-resolve extensive
In some cases, if the server responds with a non-standard source-port (anything other than udp 67), BOOTP replies will be dropped. And you may need to enable this knob (available from Junos 14.1X53-D12.4 or 14.1X53-D30 and above)set system processes dhcp-service accept-any-source-port
Hope this helps.
If this solves your problem, please mark this post as "Accepted Solution."Kudos are always appreciated :).
There's no frewall filter on lo0.0. Interface irb.27 can ping to DHCP server.
I saw this message when I capture packet on egress
Please note that the command to capture packets on egress is:
The knob that to accept any source that we were looking at, is hidden, so please continue typing it in and commit:
set system processes dhcp-service accept-any-source-port
check if dhcp server is reacbable from irb.27 with source ping.