<html><body><div style="color:#000; background-color:#fff; font-family:HelveticaNeue, Helvetica Neue, Helvetica, Arial, Lucida Grande, sans-serif;font-size:10pt"><div style="" class=""><span style="" class="">Hello,</span></div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: HelveticaNeue,Helvetica Neue,Helvetica,Arial,Lucida Grande,sans-serif; background-color: transparent; font-style: normal;"><span style="" class="">Here are some more information and I will appreciate any help despite that the problem is not directly related to dhcp. The server has two interfaces. eth0 is used for internet and eth1 is used for the tftp services.</span></div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: HelveticaNeue,Helvetica Neue,Helvetica,Arial,Lucida Grande,sans-serif; background-color: transparent; font-style: normal;"><span style="" class=""><br style="" class=""></span></div><div class="" style="color:
rgb(0, 0, 0); font-size: 13.3333px; font-family: HelveticaNeue,Helvetica Neue,Helvetica,Arial,Lucida Grande,sans-serif; background-color: transparent; font-style: normal;">On four separated terminals, I have run the following commands in the debug mode and they should log any new transaction<br style="" class=""></div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: HelveticaNeue,Helvetica Neue,Helvetica,Arial,Lucida Grande,sans-serif; background-color: transparent; font-style: normal;"> dhcp -d</div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: HelveticaNeue,Helvetica Neue,Helvetica,Arial,Lucida Grande,sans-serif; background-color: transparent; font-style: normal;"> xinetd -d</div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: HelveticaNeue,Helvetica Neue,Helvetica,Arial,Lucida Grande,sans-serif; background-color: transparent;
font-style: normal;"> in.tftpd --verbose<br style="" class=""></div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: HelveticaNeue,Helvetica Neue,Helvetica,Arial,Lucida Grande,sans-serif; background-color: transparent; font-style: normal;"> tcpdump -vv -i eth1<br style="" class=""></div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: HelveticaNeue,Helvetica Neue,Helvetica,Arial,Lucida Grande,sans-serif; background-color: transparent; font-style: normal;"><br style="" class=""></div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: HelveticaNeue,Helvetica Neue,Helvetica,Arial,Lucida Grande,sans-serif; background-color: transparent; font-style: normal;">>First check if xinetd is actually listening for the request:</div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: HelveticaNeue,Helvetica
Neue,Helvetica,Arial,Lucida Grande,sans-serif; background-color: transparent; font-style: normal;">Yes it is listening</div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: HelveticaNeue,Helvetica Neue,Helvetica,Arial,Lucida Grande,sans-serif; background-color: transparent; font-style: normal;"> # netstat -nlp | fgrep ":69 "<br style="" class=""> udp 0 0 0.0.0.0:69 0.0.0.0:* 2295/xinetd <br style="" class=""></div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: HelveticaNeue,Helvetica Neue,Helvetica,Arial,Lucida Grande,sans-serif; background-color: transparent; font-style: normal;"><br style="" class=""><span style="" class=""></span></div><div
class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: HelveticaNeue,Helvetica Neue,Helvetica,Arial,Lucida Grande,sans-serif; background-color: transparent; font-style: normal;"><br style="" class="">> First see if the netfilter modules are loaded:</div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: HelveticaNeue,Helvetica Neue,Helvetica,Arial,Lucida Grande,sans-serif; background-color: transparent; font-style: normal;">I have one line less than yours, the x_tables</div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: HelveticaNeue,Helvetica Neue,Helvetica,Arial,Lucida Grande,sans-serif; background-color: transparent; font-style: normal;"> # lsmod | fgrep table<br style="" class=""> iptable_filter 2793 1 <br style="" class="">
ip_tables 17831 1 iptable_filter<br style="" class=""> ip6table_filter 2889 1 <br style="" class=""> ip6_tables 19458 1 ip6table_filter<br style="" class=""><br style="" class=""></div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: HelveticaNeue,Helvetica Neue,Helvetica,Arial,Lucida Grande,sans-serif; background-color: transparent; font-style: normal;"><br style="" class=""></div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: HelveticaNeue,Helvetica Neue,Helvetica,Arial,Lucida Grande,sans-serif; background-color: transparent; font-style: normal;">>If they are NOT loaded (i.e. empty output) then running the following<br style="" class=""
clear="none">>commands will actually load the modules.</div><div class="" style="color: rgb(0, 0, 0); font-size: 13.3333px; font-family: HelveticaNeue,Helvetica Neue,Helvetica,Arial,Lucida Grande,sans-serif; background-color: transparent; font-style: normal;">Sorry which command?<br style="" class=""></div><div style="" class=""> <br style="" class=""><br style="" class=""><br style="" class="">>Look for things that might deny your request, or maybe look for the <br style="" class="">>specific opening that needs to be there.<br style="" class=""><br style="" class=""> # iptables -t filter -L -v -n<br style="" class=""> Chain INPUT (policy ACCEPT 0 packets, 0 bytes)<br style="" class=""> pkts bytes target prot opt in out source
destination <br style="" class=""> 5540 7783K ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED <br style="" class=""> 0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 <br style="" class=""> 2 120 ACCEPT all -- lo *
0.0.0.0/0 0.0.0.0/0 <br style="" class=""> 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:22 <br style="" class=""> 24 6006 REJECT all -- * * 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited <br style="" class=""><br style="" class=""> Chain FORWARD (policy
ACCEPT 0 packets, 0 bytes)<br style="" class=""> pkts bytes target prot opt in out source destination <br style="" class=""> 0 0 REJECT all -- * * 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited <br style="" class=""><br style="" class=""> Chain OUTPUT (policy ACCEPT 3363 packets, 143K bytes)<br style="" class=""> pkts bytes target prot opt in
out source destination <br style="" class=""><br style="" class=""><br style="" class=""><br style="" class="">I also made full permission to the ftfp folder <br style="" class=""> # ls -laR /var/lib/tftpboot/<br style="" class=""> /var/lib/tftpboot/:<br style="" class=""> total 23664<br style="" class=""> drwxrwxrwx. 3 root root 4096 Aug 2 18:34 .<br style="" class=""> drwxr-xr-x. 37 root root 4096 Aug 2 16:34 ..<br style="" class=""> -rwxrwxrwx. 1 root root 20139567 Aug 2 18:34 initrd.img<br style="" class=""> -rwxrwxrwx. 1 root root 60928 Aug 2 16:44 menu.c32<br
style="" class=""> -rwxrwxrwx. 1 root root 26828 Aug 2 16:43 pxelinux.0<br style="" class=""> drwxrwxrwx. 2 root root 4096 Aug 2 19:32 pxelinux.cfg<br style="" class=""> -rwxrwxrwx. 1 root root 3987376 Aug 2 18:34 vmlinuz<br style="" class=""> <br style="" class=""> /var/lib/tftpboot/pxelinux.cfg:<br style="" class=""> total 12<br style="" class=""> drwxrwxrwx. 2 root root 4096 Aug 2 19:32 .<br style="" class=""> drwxrwxrwx. 3 root root 4096 Aug 2 18:34 ..<br style="" class=""> -rwxrwxrwx. 1 root root 151 Aug 2 19:32 default<br style="" class=""><br style="" class=""><br style="" class=""><br style="" class=""><br style="" class="">Now I start the client. It ends up with "PXE-E11: ARP timeout".
I don't know what happened that I receives this error message again!<br style="" class="">Looking in to the debugged messages:<br style="" class="">- xinetd and in.tftpd receive no message (!) I mean the last message before starting the client is still the last message.<br style="" class="">- dhcpd shows "DHCPACK on 10.0.2.5 to 08:00:27:69:73:7a via eth1"<br style="" class="">- tcpdump shows this message<br style="" class=""> 10.0.2.1.bootps > 255.255.255.255.bootpc: [udp sum ok] BOOTP/DHCP, Reply, length 300, xid 0x2869737a, secs 4, Flags [Broadcast] (0x8000)<br style="" class=""> Your-IP 10.0.2.5<br style="" class=""> Server-IP 10.0.2.1<br style="" class=""> Client-Ethernet-Address 08:00:27:69:73:7a (oui Unknown)<br style="" class=""> file "pxelinux.0"<br style=""
class=""> Vendor-rfc1048 Extensions<br style="" class=""> Magic Cookie 0x63825363<br style="" class=""> DHCP-Message Option 53, length 1: ACK<br style="" class=""> Server-ID Option 54, length 4: 10.0.2.1<br style="" class=""> Lease-Time Option 51, length 4: 43200<br style="" class=""> Subnet-Mask Option 1, length 4: 255.255.255.240<br style="" class=""> RN Option 58, length 4: 21600<br style="" class=""> RB Option 59, length 4: 37800<br style="" class=""> <br>and multiple lines containing "ARP, Ethernet (len 6), IPv4 (len 4), Request who-has 10.0.2.1 tell
10.0.2.5, length 46"<br style="" class=""><br><br><br style="" class=""><br style="" class="">Conclusion:<br style="" class="">While I wrote "next-server 10.0.2.1", which is ip address of eth1, in the dhcpd.conf, I don't know why it doesn't reply back to the client. The client asks multiple times who has 10.0.2.1 and the server doesn't reply although it granted 10.0.2.5 to the client.<br style="" class=""><br style="" class=""><br style="" class=""><br style="" class=""><br style="" class=""></div><div style="" class="">Regards,<br style="" class="">Mahmood </div><div style="" class=""><br style="" class=""></div><div class="qtdSeparateBR"><br><br></div><div style="display: block;" class="yahoo_quoted"><div class="" style="font-family: HelveticaNeue, Helvetica Neue, Helvetica, Arial, Lucida Grande, sans-serif; font-size: 10pt;"><div class="" style="font-family: HelveticaNeue, Helvetica Neue, Helvetica, Arial, Lucida Grande, sans-serif; font-size:
12pt;"> </div> </div> </div> </div></body></html>