![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(115.19999999999999, 72%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
337 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(102.4, 27%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJT%3C/text%3E%3C/svg%3E)
It occurs to me that you might check the firewall on your Domain Controller/DNS/DHCP server.
Basically, you have a DHCP relay that relaying DHCP discovery packets from the PC in vlan 100 to the default vlan where the DC is located. I would check to see if the Windows Firewall on the DC is blocking those packets. I know that Windows Server's default firewall settings often block a lot of broadcast packets to DCs, you might need to make some changes to firewall settings there. I would start out just turning Windows Firewall logging on and setting it to log dropped packets. Generate some DHCP requests with the PC in vlan 100 (just connect it to the network) then check the firewall log in Windows Server. Note that in Windows Server the firewall log can lag behind a little in updating, so give it a couple of minutes at least.
You probably also need a static route in the router too. The route will have it's detination set to vlan 100's subnet and the gateway
Your firewall will need to allow the DHCP response traffic into vlan 100 as well. I believe this response traffic will be addressed to the DHCP relay agent's IP address and will run on port 67. Your firewall will probably need a firewall rule to allow this traffic.