[Kea-users] ALLOC_ENGINE_V4_DISCOVER_ADDRESS_CONFLICT issue

fbcadmin fbcadmin at fantinibakery.com
Mon Dec 23 11:07:50 UTC 2024 

Hello

  The reservations for  2 of the 3 KVM's have been there since we 
switched over to KEA.

thank you for looking and responding to this.

On 12/23/24 01:44, Marek Greško wrote:
> Hello,
>
> I suspect, you just hit major design flaw of the kea. It is storing 
> the reservation into the lease file and the lease has precedence when 
> responding to the client. So if your client asked for a ip address and 
> received some from the pool and you added the reservation after that, 
> you will always get the ip address from the lease. Is not this your 
> issue also?
>
> Marek
>
> On Monday, December 23rd, 2024 at 2:26, fbcadmin via Kea-users 
> <kea-users at lists.isc.org> wrote:
>>
>> Hello
>>
>> we have some hosts setup with reservations , which are instead 
>> getting a pool address.
>>
>>
>> this printer which should have 10.1.25.132 but got 10.1.25.183 . this 
>> printer and another get used overnight so we had to temporarily 
>> change the IP address at the cups print server . *
>> *
>>
>>
>> In the mean time we'll look at the programming on some of our 
>> recently replaced managed switches. I suspect pvid is incorrect on 
>> some ports or dhcp relay setting... I had been working on network 
>> security settings - like limiting which vlans are accessible from 
>> some downstream switches..
>>
>> in addition we use proxmox to manage our virtual machines. all debian 
>> KVM's which used dhcp-client had wrong addresses . windows are okay. 
>> LXC's are okay. a lot of testing and debugging was done. details are 
>> at 
>> https://forum.proxmox.com/threads/dhcp-issue-with-kvm-lxc-does-not-have-the-issue.159440/#post-731975
>>
>> here is some debugging info for a host that has this reservation. *If 
>> anyone has I suggestion on where to look to solve the issue I am all 
>> ears*! [ except the next 7 hours for sleep.]
>>
>> {
>> "hostname": "p132.fantinibakery.com",
>> "ip-address": "10.1.25.132",
>> "hw-address": "*b4:22:00:26:35:b5*"
>> },
>>
>>
>>
>> sudo tcpdump -i eth0 port 67 or port 68 -e -n -vv
>>
>> 10.1.25.132 p132.fantinibakery.com p132
>> the following s/b p132:
>>
>> 18:55:34 ALLOC_ENGINE_V4_DISCOVER_ADDRESS_CONFLICT [hwtype=1 
>> b4:22:00:26:35:b5], cid=[01:b4:22:00:26:35:b5], tid=0x1237: 
>> conflicting reservation for address 10.1.25.132 with existing lease 
>> Address: 10.1.25.132
>> Valid life: 604800
>> Cltt: 1734607378
>> Hardware addr: *b4:22:00:26:35:b5*
>> Client id: 01:b4:22:00:26:35:b5
>> Subnet ID: 17
>> Pool ID: 0
>> State: default
>> Relay ID: (none)
>> Remote ID: (none)
>>
>> 19:02:21.603380 1c:34:da:f4:05:0e > bc:24:11:e2:1d:b8, ethertype IPv4 
>> (0x0800), length 355: (tos 0x0, ttl 64, id 59862, offset 0, flags 
>> [DF], pro
>> to UDP (17), length 341)
>> 10.1.3.202.67 > 10.1.3.15.67: [udp sum ok] BOOTP/DHCP, Request from 
>> *b4:22:00:26:35:b5*, length 313, hops 1, xid 0xdc07, Flags [none] 
>> (0x0000)
>> Gateway-IP 10.1.25.9
>> Client-Ethernet-Address b4:22:00:26:35:b5
>> Vendor-rfc1048 Extensions
>> Magic Cookie 0x63825363
>> DHCP-Message (53), length 1: Discover
>> Client-ID (61), length 7: ether b4:22:00:26:35:b5
>> Hostname (12), length 15: "BRNB422002635B5"
>> Parameter-Request (55), length 11:
>> Domain-Name-Server (6), Default-Gateway (3), Subnet-Mask (1), 
>> Domain-Name (15)
>> TFTP (66), BF (67), BS (13), Netbios-Name-Server (44)
>> Time-Zone (2), NTP (42), Hostname (12)
>> Agent-Information (82), length 28:
>> Circuit-ID SubOption 1, length 6: bond19
>> Remote-ID SubOption 2, length 18: 1c:34:da:f4:05:00^J
>>
>>
>> 19:02:21.604284 bc:24:11:e2:1d:b8 > 1c:34:da:f4:05:0e, ethertype IPv4 
>> (0x0800), length 418: (tos 0x10, ttl 128, id 0, offset 0, flags [DF], 
>> proto
>> UDP (17), length 404)
>> 10.1.3.15.67 > 10.1.25.9.67: [udp sum ok] BOOTP/DHCP, Reply, length 
>> 376, hops 1, xid 0xdc07, Flags [none] (0x0000)
>> *Your-IP 10.1.25.183 *
>> Gateway-IP 10.1.25.9
>> Client-Ethernet-Address b4:22:00:26:35:b5
>> Vendor-rfc1048 Extensions
>> Magic Cookie 0x63825363
>> DHCP-Message (53), length 1: Offer
>> Subnet-Mask (1), length 4: 255.255.255.0
>> Time-Zone (2), length 4: -5
>> Default-Gateway (3), length 4: 10.1.25.1
>> Domain-Name-Server (6), length 12: 127.0.0.1,10.1.3.41,10.1.3.40
>> Hostname (12), length 22: "p132.fantinibakery.com"
>> Domain-Name (15), length 17: "fantinibakery.com"
>> NTP (42), length 4: 10.1.0.2
>> Lease-Time (51), length 4: 604800
>> Server-ID (54), length 4: 10.1.3.15
>> Client-ID (61), length 7: ether b4:22:00:26:35:b5
>> Agent-Information (82), length 28:
>> Circuit-ID SubOption 1, length 6: bond19
>> Remote-ID SubOption 2, length 18: 1c:34:da:f4:05:00^J
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/kea-users/attachments/20241223/14d27be5/attachment.htm>

More information about the Kea-users mailing list