AW: AW: Problems with destination IP of DHCP Offer Packages
Martin Krellmann
martin2002 at web.de
Sun Jul 12 15:27:37 UTC 2009
I have the same ip addresses on ipsec0 and eth0 and have the dhcp server
configured to match the subnet 0.0.0.0.
I cannot let it match the subnet of my external IP and assign addresses of
the pool 10.0.1.1 10.0.1.254 because it is not a part of this subnet
The warnings are caused by this subnet configuration because it matches all
ip addresses of all my interfaces. Does this cause the problem?
Below is the ifconfig a output:
dsl0 Link encap:Point-to-Point Protocol
inet addr:192.168.99.1 P-t-P:192.168.99.99 Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1492 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:3
RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)
eth0 Link encap:Ethernet HWaddr 00:0A:E6:26:28:F8
inet addr:xxx.xxx.xxx.xxx Bcast:255.255.255.255
Mask:255.255.254.0
UP BROADCAST NOTRAILERS RUNNING MULTICAST MTU:1500 Metric:1
RX packets:68573949 errors:0 dropped:0 overruns:0 frame:0
TX packets:14854914 errors:0 dropped:1 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:3192135602 (3044.2 Mb) TX bytes:2358531475 (2249.2 Mb)
Interrupt:5 Base address:0xdc00
eth1 Link encap:Ethernet HWaddr 00:50:FC:C9:C0:45
inet addr:192.168.1.1 Bcast:192.168.1.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:35 errors:0 dropped:0 overruns:0 frame:0
TX packets:468 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:2164 (2.1 Kb) TX bytes:38463 (37.5 Kb)
Interrupt:3 Base address:0x2f00
eth2 Link encap:Ethernet HWaddr 00:08:54:04:6C:CE
inet addr:192.168.10.253 Bcast:192.168.10.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:23620515 errors:0 dropped:0 overruns:0 frame:0
TX packets:33461944 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:2917455327 (2782.3 Mb) TX bytes:2672642608 (2548.8 Mb)
Interrupt:5 Base address:0x2e00
ipsec0 Link encap:Ethernet HWaddr 00:0A:E6:26:28:F8
inet addr:xxx.xxx.xxx.xxx Mask:255.255.254.0
UP RUNNING NOARP MTU:16260 Metric:1
RX packets:150 errors:0 dropped:1 overruns:0 frame:0
TX packets:229052 errors:0 dropped:6857 overruns:0 carrier:0
collisions:0 txqueuelen:10
RX bytes:45892 (44.8 Kb) TX bytes:32594592 (31.0 Mb)
ipsec1 Link encap:UNSPEC HWaddr
00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
NOARP MTU:0 Metric:1
RX packets:246806 errors:4 dropped:133 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:10
RX bytes:198480732 (189.2 Mb) TX bytes:0 (0.0 b)
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:10020001 errors:0 dropped:0 overruns:0 frame:0
TX packets:10020001 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:1184575726 (1129.6 Mb) TX bytes:1184575726 (1129.6 Mb)
mast0 Link encap:UNSPEC HWaddr
00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
NOARP MTU:0 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:10
RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)
Von: dhcp-users-bounces at lists.isc.org
[mailto:dhcp-users-bounces at lists.isc.org] Im Auftrag von Remzi AKYÜZ
Gesendet: Sonntag, 12. Juli 2009 05:22
An: Users of ISC DHCP
Cc: 'Glenn Satchell'
Betreff: Re: AW: Problems with destination IP of DHCP Offer Packages
Hello,
Can you look at;
"Multiple interfaces match the same subnet"
whan can say "ifconfig -a "
Martin Krellmann wrote:
Hi.
I am starting the server manually for debugging purposes:
/usr/sbin/dhcpd -d -cf /etc/dhcpd.conf -lf /var/lib/dhcp/db/dhcpd.leases -tf
/var/log/dhcpd.trace.log ipsec0
It generate the following output:
Internet Systems Consortium DHCP Server 4.1.0
Copyright 2004-2008 Internet Systems Consortium.
All rights reserved.
For info, please visit http://www.isc.org/sw/dhcp/
WARNING: Overwriting trace file "/var/log/dhcpd.trace.log"
Wrote 0 class decls to leases file.
Wrote 0 leases to leases file.
Multiple interfaces match the same subnet: eth0 eth2
Multiple interfaces match the same shared network: eth0 eth2
Multiple interfaces match the same subnet: eth0 eth1
Multiple interfaces match the same shared network: eth0 eth1
Multiple interfaces match the same subnet: eth0 ipsec0
Multiple interfaces match the same shared network: eth0 ipsec0
Listening on LPF/ipsec0/00:0a:e6:26:28:f8/0.0.0.0/0
Sending on LPF/ipsec0/00:0a:e6:26:28:f8/0.0.0.0/0
Sending on Socket/fallback/fallback-net
omapi_set_value (state, 1)
==> invalid argument
With tcpdump on ipsec0 I can see the incoming dhcp request and the outgoing
offer to the destination ip that should be assigned.
Greets,
Martin.
-----Ursprüngliche Nachricht-----
Von: dhcp-users-bounces at lists.isc.org
[mailto:dhcp-users-bounces at lists.isc.org] Im Auftrag von Glenn Satchell
Gesendet: Samstag, 11. Juli 2009 19:27
An: dhcp-users at lists.isc.org
Betreff: Re: Problems with destination IP of DHCP Offer Packages
Date: Sat, 11 Jul 2009 17:59:41 +0200
From: "Martin Krellmann" <mailto:martin2002 at web.de> <martin2002 at web.de>
Hi.
I am running dhcp server 4.1.0. It is listening directly on interface
"ipsec0" which is the interface of an ipsec tunnel. I need to send DHCP
offers out over this interface.
I am not using an relay agent because openswan, relay agent and dhcp
server
are then running on the same host and I could not get the internal routing
from the relay agent to the server working.
Let's say remote clients should get an ip address out of the subnet
"10.0.1.0/24". The ipsec server adds an route to the destination
255.255.255.255 on interface "ipsec0" so broadcast packages should be
transmitted over the tunnel. The problem is that the dhcp server does not
broadcast the offers but sends them to the IP that should be assigned to
the
client. So the package will never be routed over the ipsec tunnel and the
client gets no ip address.
Is this a configuration problem or is this a default behavior?
Greets,
Martin.
when dhcpd start up it there a line indicating that it is listening on
interface ipsec0? Something like one of these (this is on Solaris, but
most of the line should be close to yours) :
Listening on DLPI/hme0/08:00:20:b0:eb:e3/192.168.14.0/24
Sending on DLPI/hme0/08:00:20:b0:eb:e3/192.168.14.0/24
Sending on Socket/fallback/fallback-net
regards,
-glenn
_______________________________________________
dhcp-users mailing list
dhcp-users at lists.isc.org
https://lists.isc.org/mailman/listinfo/dhcp-users
_______________________________________________
dhcp-users mailing list
dhcp-users at lists.isc.org
https://lists.isc.org/mailman/listinfo/dhcp-users
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/dhcp-users/attachments/20090712/3f690687/attachment.html>
More information about the dhcp-users
mailing list