Getting DHCP to work with IPSEC VPN

NewToThis

Greetings! New to Sonicwall, and still trying to work many things out. I have a TZ570 with SonicOS 7.

I've used the wizard to setup an IPSEC VPN. I want to allow remote clients to have access to resources on my internal network.

Everything is working ok, except the remote clients are unable to get an IP address from my Windows DHCP server.

The Windows DHCP Servers are on interface X2, and the VPN clients seem to be on interface X0. I suspect there is a communication problem sending the DHCP requests from one interface to the other, but I haven't figure out how to allow that.

In the DHCP Server over VPN settings, if I select "Use Internal DHCP Server" - I do get an IP address from the firewall DHCP server, but that also doesn't help me since it only has access to interface X0.

I've tried using the Windows server IP as a DHCP relay, and also forward DHCP requests to the servers, but that doesn't seem to work. Again, I'm guessing there is a communication breakdown from X0 to X2.

Anyhow - if anyone has a suggestion on what I should do to make this work, I will be very grateful.

NewToThis

I was able to figure out my configuration issue. Posting here in case it helps anyone.

This video had the step that was missing in the written documentation:

How to troubleshoot GVC stuck at acquiring IP when the internal DHCP Server is on a subnet other than X0 subnet (sonicwall.com)

For me - the missing step was that the relay address needs to be the IP of the interface for the network that has the DHCP server. I would suggest to update the setup document, or update the info icon on the actual sonicwall to explain this tidbit. Helpful for amateurs like me.