[Kea-users] [EXTERNAL] Re: Need to have DHCP Relay in order for Kea to work...?

Ubence Quevedo thatrat at gmail.com
Sat Aug 3 09:56:18 UTC 2024 

Turning off the udp dhcp-socket-type and disabling the DHCP relay did work
in that my systems were getting IP addresses assigned to them.

However, even though I have reservations for just about everything in my
network, the systems were getting IP addresses out of scope from their
reservations.

A system on vlan11 with an IP address of 192.168.11.XXX was getting
assigned an address of 192.168.10.XXX.

I'll have to dig into the logs to see why this might be, but it could also
be because I don't have the firewall rules tightened between the vlans and
traffic from one vlan can get to another.

Once I set things back to the udp dhcp-socket-type and turned the DHCP
relay back on, the systems got the appropriate address.

I just assumed that since I had interfaces on each of the vlans that each
system on its respective vlan would get its appropriate address.

Unless I might have something else misconfigured?

-Ubence

On Fri, Aug 2, 2024 at 1:18 PM Ubence Quevedo (thatrat) <thatrat at gmail.com>
wrote:

> Yes, here’s the interface-config section that I have defined:
>     "interfaces-config": {
>         "interfaces": [ "eno2/192.168.10.3","eno2.11/192.168.11.3
> ","eno2.12/192.168.12.3" ],
>         "dhcp-socket-type": "udp",
>         "service-sockets-max-retries": 5,
>         "service-sockets-retry-wait-time": 5000
>     },
>
> …and from further reading on the interfaces-config section, specifically
> the dhcp-socket-type configuration:
> Using UDP sockets automatically disables the reception of broadcast
> packets from directly connected clients. This effectively means that UDP
> sockets can be used for relayed traffic only. When using raw sockets, both
> the traffic from the directly connected clients and the relayed traffic are
> handled.
>
> So…I’m doing this to myself. 😖
>
> I’m assuming I should either remove this line or set it to raw, which are
> effectively the same thing I believe [I like to have fully qualified
> configs when possible to take out the guess work].
>
> Once I do this though and restart the service, I think I can disable the
> relay and then the interfaces should start picking up the traffic.
>
> -Ubence
>
> On Aug 2, 2024, at 8:34 AM, Sonic <sonicsmith at gmail.com> wrote:
>
> Are you by chance using:
>  "dhcp-socket-type": "udp"
> for the interfaces in question?
>
> --
> ISC funds the development of this software with paid support
> subscriptions. Contact us at https://www.isc.org/contact/ for more
> information.
>
> To unsubscribe visit https://lists.isc.org/mailman/listinfo/kea-users.
>
> Kea-users mailing list
> Kea-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/kea-users
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/kea-users/attachments/20240803/f3fad4fb/attachment-0001.htm>

More information about the Kea-users mailing list