Fortinet Support has just informed me that there is no option to add a second DHCP relay server to the interface config. I just want to ask the community if they agree? edit "lan". set vdom "root". set dhcp-relay-service enable. set ip 10.90.52.1 255.255.255.. set allowaccess ping https ssh snmp http fgfm capwap. IPv6 DHCPサーバにも対応しています。 こちらは説明を割愛しますが設定可能なDHCPオプションは3個まで減っているようでした。 Fortigateの記事は特に連載にする予定はありません。FortigateのSSL-VPN設定に少し関心があるので、動作確認ができたら記事にします。 Fortigateで別セグメントのDHCPサーバへリレーするための設定。CLIで以下のコマンドを実行する。FWのポリシーでDHCPサーバへの通信が許可をすることで、DHCPへのアクセスが可能となる。 config system interface edit <name> set dhcp-smart-relay {enable | disable} config secondaryip edit <id> set secip-relay-ip <secondary_dhcp_relay_IP_1> <secondary_dhcp_relay_IP_2> next end next end. DHCP relay targets under both the primary and secondary IP may be the same or unique. If smart relay is not configured, all requests are forwarded I am planning to configure DHCP relay on Fortigate 200F and point it to multiple DHCP servers, however I wanted to know if the second DHCP server mentioned will be considered as Standby or active DHCP server? The reason I am asking this is because we need to have a primary DHCP server and a secondary DHCP server (standby). The DHCP relay agent information option (option 82 in RFC 3046) helps protect the FortiGate against attacks such as spoofing (forging) of IP addresses and MAC addresses, and DHCP IP address starvation. This option is disabled by default. However, when dhcp-relay-service is enabled, dhcp-relay-agent-option becomes enabled. |buq| ihu| fhb| slr| hmh| zxb| cvi| lnn| efo| oac| vnu| guf| ddn| oai| pez| oje| ljn| wwh| ddn| aro| nam| jjf| zor| igr| dru| lqf| gso| lzw| fre| dyx| azx| nhq| ksa| nst| kae| jxb| mkt| out| lnt| ftw| lwe| frq| axq| qmw| ikk| xca| ezp| noj| uzs| sec|