DHCP Relay configuration (FGT 60C, fw 5.2.1)

Hi ede_pfau thank you, I can see now the Advanced options As it is related to DHCP relay configuration, I have another question, maybe you can help me (it is related to this post, where you already helped me: [link]https://forum.fortinet.com/tm.aspx?m=116480)[/link] In my Headquarter I have a Fortigate 60D Fortigate 60D firmware 5.2.1 Internal lan 192.168.20.0/24 Fortigate internal interface 192.168.20.252 We have also a VOICE LAN (used for VOIP telephones); DHCP Server is an Alcatel switchboard, ip 192.168.1.2 (all telephones are 192.168.1.xx) I have configured in my Headquarter FGT60D a VLAN (in the internal interface) to be used for telephones and its address is 192.168.1.252 I suppose I will have few problems configuring the "data/PC" VPN using the wizard available, but I have doubts regarding the telephones, and particularly their DHCP In my Remote Office I have a Fortigate 60C Fortigate 60C firmware 5.2.1 (planned) Internal lan 192.168.120.0/24 (planned) Fortigate internal interface 192.168.120.252 I'm planning to configure in the Remote Office FGT a VLAN (linked to the internal interface) and use as addresses 192.168.101.X Is it possible ? I mean, can the remote office telephones (lan 192.168.101.x) access their DHCP server (192.168.1.2) ? My idea is to enable DHCP relay and set as DHCP Server IP 192.168.1.2

Is it correct ? Thank you

I don't see why DHCP relay over a VPN should not work. DHCP relay is explicitly crafted to be used across routers. The fact that the connection is a VPN and not plain wire doesn't change anything.

Of course, the VPN must carry both LAN address spaces (use 2 phase2's on the phase1, one for each subnet).

DHCP discovery via broadcast on the other hand will definitely not work (broadcast is not routed).

sri, don't has seen the other answers.