From owner-freebsd-questions@FreeBSD.ORG Fri Jun 22 15:57:51 2007 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 0488316A400 for ; Fri, 22 Jun 2007 15:57:51 +0000 (UTC) (envelope-from tradigan@newrevolutions.net) Received: from newrevolutions.net (h-66-166-153-85.phlapafg.covad.net [66.166.153.85]) by mx1.freebsd.org (Postfix) with ESMTP id A136613C448 for ; Fri, 22 Jun 2007 15:57:50 +0000 (UTC) (envelope-from tradigan@newrevolutions.net) Received: (qmail 69630 invoked by uid 98); 22 Jun 2007 15:58:58 -0000 Received: from 66.166.153.85 by ns1.newrevolutions.net (envelope-from , uid 89) with qmail-scanner-1.25 (clamdscan: 0.88.4/1946. spamassassin: 3.1.5. Clear:RC:0(66.166.153.85):SA:0(-1.5/5.0):. Processed in 1.846184 secs); 22 Jun 2007 15:58:58 -0000 X-Spam-Status: No, hits=-1.5 required=5.0 X-Qmail-Scanner-Mail-From: tradigan@newrevolutions.net via ns1.newrevolutions.net X-Qmail-Scanner: 1.25 (Clear:RC:0(66.166.153.85):SA:0(-1.5/5.0):. Processed in 1.846184 secs) Received: from unknown (HELO www.newrevolutions.net) (tradigan@newrevolutions.net@66.166.153.85) by newrevolutions.net with SMTP; 22 Jun 2007 15:58:56 -0000 Received: from 208.40.168.12 (SquirrelMail authenticated user tradigan@newrevolutions.net) by www.newrevolutions.net with HTTP; Fri, 22 Jun 2007 11:58:56 -0400 (EDT) Message-ID: <53014.208.40.168.12.1182527936.squirrel@www.newrevolutions.net> Date: Fri, 22 Jun 2007 11:58:56 -0400 (EDT) From: tradigan@newrevolutions.net To: freebsd-questions@freebsd.org User-Agent: SquirrelMail/1.4.10a MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal Subject: dhcrelay X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 22 Jun 2007 15:57:51 -0000 Not sure if this is the right place for this, but I have a set of FreeBSD 6.2 firewalls. They each have 3 interfaces in them. One interface connects to the 10.94/16 network, the other connects the 192.168.4/24, 192.168.5/24 and 192.168.8/24 networks. Here is a breakdown of the interfaces: BSD 1 bge0 10.94.2.222/16 xl0 "up" xl1 "up" vlan2 192.168.4.2/24 vlan3 192.168.5.2/24 vlan4 192.168.8.2/24 carp1 10.94.2.221/16 carp2 192.168.4.1/24 carp3 192.168.5.1/24 carp4 192.168.8.1/24 BSD 2 bge0 10.94.2.223/16 xl0 "up" xl1 "up" vlan2 192.168.4.3/24 vlan3 192.168.5.3/24 vlan4 192.168.8.3/24 carp1 10.94.2.221/16 carp2 192.168.4.1/24 carp3 192.168.5.1/24 carp4 192.168.8.1/24 BSD 1 is the current CARP master for all interfaces. For dhcrelay in rc.conf I have: dhcrelay_enable="YES" dhcrelay_servers="10.94.2.204" # IP to MS Server 2003 DHCP server dhcrelay_ifaces="bge0 vlan2 vlan3 vlan4" dhcrelay_flags="-a" In MS Server 2003 there is a superscope defined with scopes for each network (10.94/16, 192.168.4., 192.168.5., and 192.168.8.) The problem is, it doesn't seem like the BSD box is forwarding the DHCP requests to the DHCP server. It will NOT get an address. If I manually assign an IP address, the client talks fine to the other networks. There are no firewall/nat rules loaded at all.. PF is running but without a rule set it defaults to allow all.. any ideas?