<div><div dir="auto">Hey </div><div dir="auto">Bevor switching to a dhcp relay we had a similar problem </div></div><div dir="auto"><br></div><div dir="auto">We used openvswitch to create virtual nics which then served the taged vlan traffic as untaged traffic through them.</div><div dir="auto"><br></div><div dir="auto">We then configured kea to use these virtual nics.</div><div dir="auto"><br></div><div dir="auto">I hope that helps you to solve your problem.</div><div dir="auto"><br></div><div dir="auto">Cheers,</div><div dir="auto">Ben</div><div dir="auto"><br></div><div><div class="gmail_quote"><div dir="ltr" class="gmail_attr">Dajka Tamás <<a href="mailto:viper@vipernet.hu">viper@vipernet.hu</a>> schrieb am Sa. 1. Feb. 2020 um 22:17:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-style:solid;padding-left:1ex;border-left-color:rgb(204,204,204)"><div lang="HU" link="blue" vlink="#954F72"><div class="m_2957652353465163289WordSection1"><p class="MsoNormal"><span style="color:rgb(31,73,125)">Have you tried setting the IPs also for the interfaces (both in interface-configs and pools), like this one<u></u><u></u></span></p><p class="MsoNormal"><span style="color:rgb(31,73,125)"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE">"interfaces": [ "eth0/<a href="http://192.168.20.1" target="_blank">192.168.20.1</a>", "eth0.30192.168.30.1"]<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE">…<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE">"interface": "eth0/<a href="http://192.168.20.1" target="_blank">192.168.20.1</a>",<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE">The dirty workaround for native vlan 1 is to have a cross-cable connected between two ports of the same switch. One port is set to native untagged vlan, the other port is set to vlan 20 (new vlan, access port, so untagged also). Don’t forget to remove the native vlan from the KEA’s port in this case, otherwise you’ll create a loop.<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE">Cheers,<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE"> Tom</span><span style="color:rgb(31,73,125)"><u></u><u></u></span></p></div></div><div lang="HU" link="blue" vlink="#954F72"><div class="m_2957652353465163289WordSection1"><p class="MsoNormal"><span style="color:rgb(31,73,125)"><u></u> <u></u></span></p><div><div style="border-style:solid none none;border-top-width:1pt;padding:3pt 0cm 0cm;border-top-color:rgb(225,225,225)"><p class="MsoNormal"><b>From:</b> Talkabout [mailto:<a href="mailto:talk.about@gmx.de" target="_blank">talk.about@gmx.de</a>] <br><b>Sent:</b> Saturday, February 1, 2020 5:58 PM<br><b>To:</b> Dajka Tamás <<a href="mailto:viper@vipernet.hu" target="_blank">viper@vipernet.hu</a>>; <a href="mailto:kea-users@lists.isc.org" target="_blank">kea-users@lists.isc.org</a><br><b>Subject:</b> AW: [Kea-users] KEA DHCP and VLANS...<u></u><u></u></p></div></div><p class="MsoNormal"><u></u> <u></u></p><p class="MsoNormal"><span lang="DE">Hi Tom,<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE">thanks for your answer but both suggestions are difficult to accomplish. The first one is disqualified because other components in my Network infrastructure do not support vlan Tagging, the second one because my switch does not provide a dhcp relay Option.<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE">I am wondering why KEA DHCP is not supporting such a configuration. Currently I am using dnsmasq and there I have no issues. Theoretically only a check is missing whether a particular packet is tagged, if so, do not consider the physical device for dhcp…<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE">Can I assume that such an infrastructure will never be supported by KEA DHCP Server? If so this is really bad luck, I like the functionalities of this Software…<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal" style="margin-bottom:12pt"><span lang="DE">Thanks!<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE">Bye<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE">Gesendet von <a href="https://go.microsoft.com/fwlink/?LinkId=550986" target="_blank">Mail</a> für Windows 10<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><div style="border-style:solid none none;border-top-width:1pt;padding:3pt 0cm 0cm;border-top-color:rgb(225,225,225)"><p class="MsoNormal"><b><span lang="DE">Von: </span></b><span lang="DE"><a href="mailto:viper@vipernet.hu" target="_blank">Dajka Tamás</a><br><b>Gesendet: </b>Samstag, 1. Februar 2020 17:43<br><b>An: </b><a href="mailto:talk.about@gmx.de" target="_blank">'Talkabout'</a>; <a href="mailto:kea-users@lists.isc.org" target="_blank">kea-users@lists.isc.org</a><br><b>Betreff: </b>RE: [Kea-users] KEA DHCP and VLANS...<u></u><u></u></span></p></div><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span style="color:rgb(31,73,125)">Hi,<u></u><u></u></span></p><p class="MsoNormal"><span style="color:rgb(31,73,125)"><u></u> <u></u></span></p><p class="MsoNormal"><span style="color:rgb(31,73,125)">it’s never a good idea to mix untagged (native vlan 1) and tagged packets. I suggest you change your network layout, this will prevent you from many more phenomenons.<u></u><u></u></span></p><p class="MsoNormal"><span style="color:rgb(31,73,125)"><u></u> <u></u></span></p><p class="MsoNormal"><span style="color:rgb(31,73,125)">Cheers,<u></u><u></u></span></p><p class="MsoNormal"><span style="color:rgb(31,73,125)"><u></u> <u></u></span></p><p class="MsoNormal"><span style="color:rgb(31,73,125)"> Tom<u></u><u></u></span></p><p class="MsoNormal"><span style="color:rgb(31,73,125)"><u></u> <u></u></span></p><p class="MsoNormal"><span style="color:rgb(31,73,125)">p.s.: if you cannot do it easily, than set up a dhcp-relay for native vlan on the switch and relay it to the KEA in a separate vlan<u></u><u></u></span></p><p class="MsoNormal"><span style="color:rgb(31,73,125)"><u></u> <u></u></span></p><div><div style="border-style:solid none none;border-top-width:1pt;padding:3pt 0cm 0cm;border-top-color:rgb(225,225,225)"><p class="MsoNormal"><b>From:</b> Kea-users [<a href="mailto:kea-users-bounces@lists.isc.org" target="_blank">mailto:kea-users-bounces@lists.isc.org</a>] <b>On Behalf Of </b>Talkabout<br><b>Sent:</b> Saturday, February 1, 2020 2:12 PM<br><b>To:</b> <a href="mailto:kea-users@lists.isc.org" target="_blank">kea-users@lists.isc.org</a><br><b>Subject:</b> Re: [Kea-users] KEA DHCP and VLANS...<u></u><u></u></p></div></div><p class="MsoNormal"><u></u> <u></u></p><p class="MsoNormal"><span lang="DE">Hi all,<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE">I think the Problem here is the physical interface. It seems that for every virtual interface the dhcp request is also delivered to eth0, which makes the DHCP Server to try to advertise ips from the vlan and lan. Depending on the Client the correct or wrong ip is accepted.<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE">Question: is KEA DHCP Server honoring the vlan Tagging? In such a case it should not accept the DHCP requests on eth0 if the request is tagged with a particuar vlan.<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE">Thanks!<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE">Gesendet von <a href="https://go.microsoft.com/fwlink/?LinkId=550986" target="_blank">Mail</a> für Windows 10<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><div style="border-style:solid none none;border-top-width:1pt;padding:3pt 0cm 0cm;border-top-color:rgb(225,225,225)"><p class="MsoNormal"><b><span lang="DE">Von: </span></b><span lang="DE"><a href="mailto:talk.about@gmx.de" target="_blank">Talkabout</a><br><b>Gesendet: </b>Samstag, 1. Februar 2020 12:36<br><b>An: </b><a href="mailto:kea-users@lists.isc.org" target="_blank">kea-users@lists.isc.org</a><br><b>Betreff: </b>[Kea-users] KEA DHCP and VLANS...<u></u><u></u></span></p></div><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE">Hi guys,<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE">I am struggling in getting my KEA DHCP Server to work with my VLAN Environment. I was assuming that defining a list of virtual interfaces and subnets matching those is sufficient, but it seems that the „dhcp-socket-type: raw“ is skipping the VLAN handling in the Linux kernel and thus this Information is Kind of lost… I have read a lot About Client classes, shared Networks and so on but I have not found any solution in how to get the DHCP Server to assign correct ip pools based on the VLAN. Here is my configuration:<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE">Interfaces:<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE">eth0 => physical interface<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE">eth0.30 => virtual interface<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE">eth0.50 => virtual interface<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE">eth0.100 => virtual interface<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE">KEA DHCP conf:<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE">{<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "Dhcp4": {<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "interfaces-config": {<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "interfaces": [ "eth0", "eth0.30", "eth0.50", "eth0.100" ],<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "dhcp-socket-type": "raw"<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> },<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "control-socket": {<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "socket-type": "unix",<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "socket-name": "/tmp/kea4-ctrl-socket"<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> },<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "lease-database": {<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> …<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> },<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "hosts-database": {<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> …<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> },<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "sanity-checks": {<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "lease-checks": "fix-del"<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> },<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "valid-lifetime": 28800,<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "rebind-timer": 21600,<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "subnet4": [<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> {<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "pools": [<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> {<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "pool": "192.168.20.100-192.168.20.200"<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> }<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> ],<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "id": 1,<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "subnet": "<a href="http://192.168.20.0/24" target="_blank">192.168.20.0/24</a>",<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "interface": "eth0",<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "option-data": [<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> …<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> ]<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> },<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> {<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "pools": [<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> {<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "pool": "192.168.30.100-192.168.30.200"<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> }<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> ],<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "id": 30,<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "subnet": "<a href="http://192.168.30.0/24" target="_blank">192.168.30.0/24</a>",<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "interface": "eth0.30",<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "option-data": [<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> …<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> ]<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> },<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> {<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "pools": [<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> {<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "pool": "192.168.50.100-192.168.50.200"<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> }<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> ],<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "id": 50,<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "interface" : "eth0.50",<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "subnet": "<a href="http://192.168.50.0/24" target="_blank">192.168.50.0/24</a>",<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "option-data": [<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> …<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> ]<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> },<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> {<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "pools": [<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> {<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "pool": "192.168.100.100-192.168.100.200"<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> }<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> ],<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "id": 100,<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "subnet": "<a href="http://192.168.100.0/24" target="_blank">192.168.100.0/24</a>",<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "interface": "eth0.100",<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "option-data": [<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> …<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> ]<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> }<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> ],<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "hooks-libraries": [<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> …<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> ],<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> "loggers": [<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> …<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> ]<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"> }<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE">}<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE">What do I Need to do to force the DHCP Server to assign an IP address from a subnet based on the tagged VLAN of the request?<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE">I am using KEA DHCP Server Version 1.6.1.<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE">Help is much appreciated!<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE">Thanks!<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE">Gesendet von <a href="https://go.microsoft.com/fwlink/?LinkId=550986" target="_blank">Mail</a> für Windows 10<u></u><u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p><p class="MsoNormal"><span lang="DE"><u></u> <u></u></span></p></div></div>_______________________________________________<br>
Kea-users mailing list<br>
<a href="mailto:Kea-users@lists.isc.org" target="_blank">Kea-users@lists.isc.org</a><br>
<a href="https://lists.isc.org/mailman/listinfo/kea-users" rel="noreferrer" target="_blank">https://lists.isc.org/mailman/listinfo/kea-users</a><br>
</blockquote></div></div>-- <br><div dir="ltr" class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div dir="ltr"><div dir="ltr"><div><div dir="ltr"><p style="margin-bottom:7pt;margin-top:1pt;color:rgb(0,77,218)">_____________________________________</p> <p style="margin-bottom:5pt;margin-top:1pt;font-size:15pt;color:rgb(0,77,218)">Benedikt Oehlrich<br></p> <p style="margin-bottom:1pt"><span style="font-size:10pt;font-family:"Rockwell",serif;color:rgb(164,164,164)">Weststudent <br></span></p> <p style="margin-bottom:1pt;margin-top:15pt">mobil: + </p> <p style="margin-bottom:1pt;margin-top:1pt"><a href="mailto:cem@codemanufaktur.com" target="_blank"><span style="color:black"> boe@codemanufaktur.com </span></a></p> <p style="margin-bottom:1pt;margin-top:1pt"><a href="http://www.codemanufaktur.com/" target="_blank">codemanufaktur.com</a></p> <div style="font-size:9pt;color:rgb(51,51,51);font-family:Rockwell"><b><span style="font-size:9pt;font-family:"Rockwell",serif;color:rgb(51,51,51)"><br></span></b></div><div style="font-size:9pt;color:rgb(51,51,51);font-family:Rockwell"><b><span style="font-size:9pt;font-family:"Rockwell",serif;color:rgb(51,51,51)">codemanufaktur
GmbH</span></b><span style="font-size:9pt;font-family:"Rockwell",serif;color:rgb(51,51,51)"><span><br>
zentral: <a href="tel:%2B49%209131%20972%20939%200" target="_blank">+49
9131 972 939 0</a><br>
</span><a href="https://maps.google.com/?q=N%C3%A4gelsbachstra%C3%9Fe+26+91052+Erlangen&entry=gmail&source=g" target="_blank">Nägelsbachstraße
26</a><br>
<a href="https://maps.google.com/?q=N%C3%A4gelsbachstra%C3%9Fe+26+91052+Erlangen&entry=gmail&source=g" target="_blank">91052
Erlangen</a></span><span><span style="font-size:8pt;font-family:"Rockwell",serif;color:rgb(164,164,164)"><br></span></span></div><div style="font-size:9pt;color:rgb(51,51,51);font-family:Rockwell"><span><span style="font-size:8pt;font-family:"Rockwell",serif;color:rgb(164,164,164)"><br>
</span></span></div> <div style="font-size:8pt;color:rgb(164,164,164);font-family:Rockwell"> <p style="margin-bottom:1pt;margin-top:1pt">Sitz: Erlangen. Registergericht: Amtsgericht Fürth, HRB 12944</p> <p style="margin-bottom:1pt;margin-top:1pt">Geschäftsführer: Vit Matousek</p> </div> <p style="margin-bottom:1pt;margin-top:1pt;color:rgb(0,77,218)">_____________________________________</p></div></div></div></div></div></div>