query regarding isc dhcpv6 client

scott_stone at trendmicro.com scott_stone at trendmicro.com
Fri Nov 25 08:14:54 UTC 2011


try, as root:

 

setenforce 0

 

then try this again.  Syslog says selinux is preventing it from working - the above wlil put selinux into 'permissive' mode (but not permanently disable it) and you can run your tests.  If you need selinux running in enforcing mode, you'll have to revise your selinux policies to allow it.  If you don't really need it to be enforcing, edit /etc/sysconfig/selinux and change it to always use permissive mode (that's assuming RHEL or CentOS or Fedora or something similar).

 

====================

Scott Stone <scott_stone at trendmicro.com>

Manager, DCS-RD

Trend Micro, Inc. http://www.trendmicro.com

 

From: dhcp-users-bounces+scott_stone=trendmicro.com at lists.isc.org [mailto:dhcp-users-bounces+scott_stone=trendmicro.com at lists.isc.org] On Behalf Of ameen.shajahan at wipro.com
Sent: Thursday, November 24, 2011 11:02 PM
To: dhcp-users at lists.isc.org
Subject: RE: query regarding isc dhcpv6 client 

 

Vikram,

                Hi, I have included my output in client side using ISC DHCP 4.2.3

 

 

[root at localhost client]# ls

clparse.c  dhc6.o      dhclient.c       dhclient.leases.5  Makefile     scripts

clparse.o  dhclient    dhclient.conf    dhclient.o         Makefile.am

dhc6.c     dhclient.8  dhclient.conf.5  dhclient-script.8  Makefile.in

[root at localhost client]# ./dhclient -d

Internet Systems Consortium DHCP Client 4.2.3

Copyright 2004-2011 Internet Systems Consortium.

All rights reserved.

For info, please visit https://www.isc.org/software/dhcp/

 

/sbin/dhclient-script: configuration for  not found. Continuing with defaults.

basename: missing operand

Try `basename --help' for more information.

/etc/sysconfig/network-scripts/network-functions: line 78: .: filename argument required

.: usage: . filename [arguments]

No broadcast interfaces found - exiting.

 

 

After that I saw the log messages for this above problem and it stating that,

 

 

 

[root at localhost client]# tail -f /var/log/messages

Nov 25 22:20:06 localhost dhclient: XMT: Solicit on eth0, interval 127770ms.

Nov 25 22:22:14 localhost dhclient: XMT: Solicit on eth0, interval 121340ms.

Nov 25 22:22:40 localhost dhclient: Internet Systems Consortium DHCP Client 4.2.3

Nov 25 22:22:40 localhost dhclient: Copyright 2004-2011 Internet Systems Consortium.

Nov 25 22:22:40 localhost dhclient: All rights reserved.

Nov 25 22:22:40 localhost dhclient: For info, please visit https://www.isc.org/software/dhcp/

Nov 25 22:22:40 localhost dhclient: 

Nov 25 22:22:40 localhost setroubleshoot: SELinux is preventing dhclient-script (dhcpc_t) "read" to /var/db/dhclient.leases (var_t). For complete SELinux messages. run sealert -l 5213ea25-1a6a-470c-ba8d-b1ce9663bb1a

Nov 25 22:22:40 localhost dhclient: No broadcast interfaces found - exiting.

Nov 25 22:24:15 localhost dhclient: XMT: Solicit on eth0, interval 109710ms.

 

 

 

Please let me know what would be the reason for this error (/sbin/dhclient-script: configuration for  not found. Continuing with defaults).

 

 

Thanks,

Ameen S

 

 

From: dhcp-users-bounces+ameen.shajahan=wipro.com at lists.isc.org [mailto:dhcp-users-bounces+ameen.shajahan=wipro.com at lists.isc.org] On Behalf Of Vikram Agrawal
Sent: 24 November 2011 20:17
To: Users of ISC DHCP
Subject: RE: query regarding isc dhcpv6 client and server

 

 

You could actually verify if there is any handling for IPv6 in your dhclient-script. 

I see that you have specified "/usr/local/etc/dhclient-script" in your dhclient .conf file.

 

So you might want to have a look into this script to see if there is any handling of this sort (as below); and if not you could add the same at the end of the script.

 

###

### DHCPv6 Handlers

###

 

if [ x$reason = xPREINIT6 ] ; then

  # Ensure interface is up.

  ${ip} link set ${interface} up

 

  # Remove any stale addresses from aborted clients.

  ${ip} -f inet6 addr flush dev ${interface} scope global permanent

 

  exit_with_hooks 0

fi

 

if [ x${old_ip6_prefix} != x ] || [ x${new_ip6_prefix} != x ] ; then

    echo Prefix ${reason} old=${old_ip6_prefix} new=${new_ip6_prefix}

 

    exit_with_hooks 0

fi

 

if [ x$reason = xBOUND6 ] ; then

  if [ x${new_ip6_address} = x ] || [ x${new_ip6_prefixlen} = x ] ; then

    exit_with_hooks 2;

  fi

 

  ${ip} -f inet6 addr add ${new_ip6_address}/${new_ip6_prefixlen} \

                    dev ${interface} scope global

 

  # Check for nameserver options.

  make_resolv_conf

 

  exit_with_hooks 0

fi

 

if [ x$reason = xRENEW6 ] || [ x$reason = xREBIND6 ] ; then

  if [ x${new_ip6_address} = x ] || [ x${new_ip6_prefixlen} = x ] ; then

    exit_with_hooks 2;

  fi

 

  ${ip} -f inet6 addr add ${new_ip6_address}/${new_ip6_prefixlen} \

                    dev ${interface} scope global

 

  # Make sure nothing has moved around on us.

 

  # Nameservers/domains/etc.

  if [ "x${new_dhcp6_name_servers}" != "x${old_dhcp6_name_servers}" ] ||

     [ "x${new_dhcp6_domain_search}" != "x${old_dhcp6_domain_search}" ] ; then

    make_resolv_conf

  fi

 

  exit_with_hooks 0

fi

 

if [ x$reason = xDEPREF6 ] ; then

  if [ x${new_ip6_prefixlen} = x ] ; then

    exit_with_hooks 2;

  fi

 

  ${ip} -f inet6 addr change ${new_ip6_address}/${new_ip6_prefixlen} \

       dev ${interface} scope global preferred_lft 0

 

  exit_with_hooks 0

fi

 

if [ x$reason = xEXPIRE6 -o x$reason = xRELEASE6 -o x$reason = xSTOP6 ] ; then

  if [ x${old_ip6_address} = x ] || [ x${old_ip6_prefixlen} = x ] ; then

    exit_with_hooks 2;

  fi

 

  ${ip} -f inet6 addr del ${old_ip6_address}/${old_ip6_prefixlen} \

                    dev ${interface}

 

  exit_with_hooks 0

fi

 

 

Regards,

Vikram

 

From: dhcp-users-bounces+vikram.agrawal=ipinfusion.com at lists.isc.org [mailto:dhcp-users-bounces+vikram.agrawal <mailto:dhcp-users-bounces%2Bvikram.agrawal> =ipinfusion.com at lists.isc.org] On Behalf Of ameen.shajahan at wipro.com
Sent: 24 November 2011 18:58
To: dhcp-users at lists.isc.org
Subject: RE: query regarding isc dhcpv6 client and server

 

Vikram ,

                You said that there is no handlers for DHCPv6 support in default script.

                I would like to know where exactly the patch file should be added. Please let me know.

                Also I want to know which portion of the script to be added .

Thanks,

Ameen S

 

From: dhcp-users-bounces+ameen.shajahan=wipro.com at lists.isc.org [mailto:dhcp-users-bounces+ameen.shajahan <mailto:dhcp-users-bounces%2Bameen.shajahan> =wipro.com at lists.isc.org] On Behalf Of Vikram Agrawal
Sent: 24 November 2011 14:08
To: Users of ISC DHCP
Subject: RE: query regarding isc dhcpv6 client and server

 

 

My Best guess is that your dhclient-script does not have handlers for DHCPv6 support. So kindly check on the same.

The default script with the ISC DHCP package does not provide that. Probably this link should help http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=635897

 

 

Regards,

Vikram

 

From: dhcp-users-bounces+vikram.agrawal=ipinfusion.com at lists.isc.org [mailto:dhcp-users-bounces+vikram.agrawal <mailto:dhcp-users-bounces%2Bvikram.agrawal> =ipinfusion.com at lists.isc.org] On Behalf Of ameen.shajahan at wipro.com
Sent: 24 November 2011 13:15
To: dhcp-users at lists.isc.org
Subject: RE: query regarding isc dhcpv6 client and server

 

Hi Vikram,

                I have send the conf file for client and server

 

SERVER - Conf file (dhcpd-dhcpv6.conf)

 

# Server configuration file example for DHCPv6

# From the file used for TAHI tests.

 

# IPv6 address valid lifetime

#  (at the end the address is no longer usable by the client)

#  (set to 30 days, the usual IPv6 default)

default-lease-time 2592000;

 

# IPv6 address preferred lifetime

#  (at the end the address is deprecated, i.e., the client should use

#   other addresses for new connections)

#  (set to 7 days, the       usual IPv6 default)

preferred-lifetime 604800;

 

# T1, the delay before Renew

#  (default is 1/2 preferred lifetime)

#  (set to 1 hour)

option dhcp-renewal-time 3600;

 

# T2, the delay before Rebind (if Renews failed)

#  (default is 3/4 preferred lifetime)

#  (set to 2 hours)

option dhcp-rebinding-time 7200;

 

# Enable RFC 5007 support (same than for DHCPv4)

allow leasequery;

 

# Global definitions for name server address(es) and domain search list

option dhcp6.name-servers 3ffe:501:ffff:100:200:ff:fe00:3f3e;

option dhcp6.domain-search "test.example.com","example.com";

 

# Set preference to 255 (maximum) in order to avoid waiting for

# additional servers when there is only one

##option dhcp6.preference 255;

 

# Server side command to enable rapid-commit (2 packet exchange)

##option dhcp6.rapid-commit;

 

# The delay before information-request refresh

#  (minimum is 10 minutes, maximum one day, default is to not refresh)

#  (set to 6 hours)

option dhcp6.info-refresh-time 21600;

 

# The path of the lease file

#dhcpv6-lease-file-name "/usr/local/var/db/dhcpd6.leases";

dhcpv6-lease-file-name "/var/db/dhcpd6.leases";

 

# Static definition (must be global)

host myclient {

                # The entry is looked up by this

                host-identifier option

                                dhcp6.client-id 00:01:00:01:00:04:93:e0:00:00:00:00:a2:a2;

 

                # A fixed address

                fixed-address6 3ffe:501:ffff:100::1234;

 

                # A fixed prefix

                fixed-prefix6 3ffe:501:ffff:101::/64;

 

                # Override of the global definitions,

                # works only when a resource (address or prefix) is assigned

                option dhcp6.name-servers 3ffe:501:ffff:100:200:ff:fe00:4f4e;

 

                # For debug (to see when the entry statements are executed)

                #  (log "sol" when a matching Solicitation is received)

                ##if packet(0,1) = 1 { log(debug,"sol"); }

}

 

host otherclient {

        # This host entry is hopefully matched if the client supplies a DUID-LL

        # or DUID-LLT containing this MAC address.

        hardware ethernet 01:00:80:a2:55:67;

 

        fixed-address6 3ffe:501:ffff:100::4321;

}

 

# The subnet where the server is attached

#  (i.e., the server has an address in this subnet)

subnet6 3ffe:501:ffff:100::/64 {

                # Two addresses available to clients

                #  (the third client should get NoAddrsAvail)

                range6 3ffe:501:ffff:100::10 3ffe:501:ffff:100::11;

 

                # Use the whole /64 prefix for temporary addresses

                #  (i.e., direct application of RFC 4941)

                range6 3ffe:501:ffff:100:: temporary;

 

                # Some /64 prefixes available for Prefix Delegation (RFC 3633)

                prefix6 3ffe:501:ffff:100:: 3ffe:501:ffff:111:: /64;

}

 

#subnet6 fe80::222:19ff:fe60:/64{

#             range6 fe80::222:19ff:fe60::11 fe80::222:19ff:fe60::12;

#

#             range6 fe80::222:19ff:fe60:: temporary;

#             prefix6 fe80::222:19ff:fe60:: fe80:222:19ff:fe60::/64;

#}

# A second subnet behind a relay agent

subnet6 3ffe:501:ffff:101::/64 {

                range6 3ffe:501:ffff:101::10 3ffe:501:ffff:101::11;

 

                # Override of the global definitions,

                # works only when a resource (address or prefix) is assigned

                option dhcp6.name-servers 3ffe:501:ffff:101:200:ff:fe00:3f3e;

 

}

 

# A third subnet behind a relay agent chain

subnet6 3ffe:501:ffff:102::/64 {

                range6 3ffe:501:ffff:102::10 3ffe:501:ffff:102::11;

}

 

 

And the output in server side is

 

[root at localhost dhcp]#  /usr/sbin/dhcpd -6 -f -cf /etc/dhcp/dhcpd-dhcpv6.conf eth0

Internet Systems Consortium DHCP Server 4.2.3

Copyright 2004-2011 Internet Systems Consortium.

All rights reserved.

For info, please visit https://www.isc.org/software/dhcp/

Wrote 0 deleted host decls to leases file.

Wrote 0 new dynamic host decls to leases file.

Wrote 0 leases to leases file.

Bound to *:547

Listening on Socket/5/eth0/3ffe:501:ffff:100::/64

Sending on   Socket/5/eth0/3ffe:501:ffff:100::/64

 

 

 

 

 

 

CLIENT -Conf file(dhclient-dhcpv6.conf)

 

# Client configuration file example for DHCPv6

 

# The client side command to enable rapid-commit (2 packet exchange)

 

##send dhcp6.rapid-commit;

 

 

# name-servers and domain-search are requested by default.

# here is the way to request sip-servers-addresses too

also request dhcp6.sip-servers-addresses;

 

# Likely to be useful: the script path

script "/usr/local/etc/dhclient-script";

 

 

 

------------------------------------

 

This is my client and server conf file.

My problem is server is running.

But the in client side there is no action.

Please let me know what I have to change in conf files and how to start the communication between client and server.

What would be the reason.what is the problem actually.

 

Thanks,

Ameen S

 

 

From: dhcp-users-bounces+ameen.shajahan=wipro.com at lists.isc.org [mailto:dhcp-users-bounces+ameen.shajahan <mailto:dhcp-users-bounces%2Bameen.shajahan> =wipro.com at lists.isc.org] On Behalf Of Vikram Agrawal
Sent: 24 November 2011 12:27
To: Users of ISC DHCP
Subject: RE: query regarding isc dhcpv6 client and server

 

Hi,

 

Could you provide the dhcpd.conf file contents.

 

Also I believe you are running the dhclient with the -6 option as

dhclient -6 <interface-name>

 

 

Regards,

Vikram

 

From: dhcp-users-bounces+vikram.agrawal=ipinfusion.com at lists.isc.org [mailto:dhcp-users-bounces+vikram.agrawal <mailto:dhcp-users-bounces%2Bvikram.agrawal> =ipinfusion.com at lists.isc.org] On Behalf Of ameen.shajahan at wipro.com
Sent: 24 November 2011 11:54
To: dhcp-users at lists.isc.org
Subject: query regarding isc dhcpv6 client and server
Importance: High

 

Hi all,

                I need one info about ISC DHCPV6 usage.

                

                Running server in linux box (RHEL 5.4)

                Server is listening . I got below output in server side

 
# /usr/sbin/dhcpd -6 -f -cf /etc/dhcp/dhcpd.conf eth1 

Internet Systems Consortium DHCP Server 4.1.0 

Copyright 2004-2008 Internet Systems Consortium. 

All rights reserved. 

For info, please visit http://www.isc.org/sw/dhcp/ 

Not searching LDAP since ldap-server, ldap-port and ldap-base-dn were not specified in the config file 

Wrote 0 leases to leases file. 

Bound to *:547 

Listening on Socket/5/eth1/2001:db8:0:1::/64 

Sending on   Socket/5/eth1/2001:db8:0:1::/64

 

 

 

                But the problem is how to start communication with the client.

                I have connected client and server using cross cables.

                Client is in another linux box.

                

                While issuning /sbin/dhclient in client side

                Its sending DHCP DISCOVER messages.

                Its not listening the server interface(2001:db8:0:1::/64)

      

How to start communication.Whether I should change something in client side.

Please tell me what would be the reason.

Please provide solution.

 

 

I need the sample output as mentioned below.

 

 

I have downloaded dhcp-4.2.3.tar.gz in ISC SITE  and copied to my client and server.

 

 

 

         Client                                                     DHCP Server

fe80::222:68ff:fe11:62cd                                 fe80::62eb:69ff:fe4e:2b8b

        |                                                         |

        |                      (all nodes address)                 |

        |                          ff02::1:2                       |

        |                             |                            |                   

        |                             |                            |

        |    Solicit XID: 0x28d6      |                            | DHCPv6: Solicit XID: 0x28d6e4 CID: 0001000115ad822e0022681162cd 

        |---------------------------->|                            |

        |                             |                            |

        |                             |                            |

        |   Advertise XID: 0x28       |                            | DHCPv6: Advertise XID: 0x28d6e4 IAA: 2001:ed8:77b5::8758:1493 CID: 0001000115ad822e0022681162cd 

        |<---------------------------------------------------------|

        |                             |                            |

        |                             |                            |

        |    Request XID: 0x35a2      |                            | DHCPv6: Request XID: 0x35a211 CID: 0001000115ad822e0022681162cd IAA: 2001:ed8:77b5::8758:1493 

        | --------------------------->|                            |

        |                             |                            |

        |                             |                            |

        |   Reply XID: 0x35a211       |                            | DHCPv6: Reply XID: 0x35a211 IAA: 2001:ed8:77b5::8758:1493 CID: 0001000115ad822e0022681162cd 

        |<---------------------------------------------------------|

 

Please do not print this email unless it is absolutely necessary. 

The information contained in this electronic message and any attachments to this message are intended for the exclusive use of the addressee(s) and may contain proprietary, confidential or privileged information. If you are not the intended recipient, you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately and destroy all copies of this message and any attachments. 

WARNING: Computer viruses can be transmitted via email. The recipient should check this email and any attachments for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by this email. 

www.wipro.com 

Please do not print this email unless it is absolutely necessary. 

The information contained in this electronic message and any attachments to this message are intended for the exclusive use of the addressee(s) and may contain proprietary, confidential or privileged information. If you are not the intended recipient, you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately and destroy all copies of this message and any attachments. 

WARNING: Computer viruses can be transmitted via email. The recipient should check this email and any attachments for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by this email. 

www.wipro.com 

Please do not print this email unless it is absolutely necessary. 

The information contained in this electronic message and any attachments to this message are intended for the exclusive use of the addressee(s) and may contain proprietary, confidential or privileged information. If you are not the intended recipient, you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately and destroy all copies of this message and any attachments. 

WARNING: Computer viruses can be transmitted via email. The recipient should check this email and any attachments for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by this email. 

www.wipro.com 

Please do not print this email unless it is absolutely necessary. 

The information contained in this electronic message and any attachments to this message are intended for the exclusive use of the addressee(s) and may contain proprietary, confidential or privileged information. If you are not the intended recipient, you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately and destroy all copies of this message and any attachments. 

WARNING: Computer viruses can be transmitted via email. The recipient should check this email and any attachments for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by this email. 

www.wipro.com 


TREND MICRO EMAIL NOTICE
The information contained in this email and any attachments is confidential and may be subject to copyright or other intellectual property protection. If you are not the intended recipient, you are not authorized to use or disclose this information, and we request that you notify us by reply mail or telephone and delete the original message from your mail system.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/dhcp-users/attachments/20111125/124b74f7/attachment.html>


More information about the dhcp-users mailing list