From owner-freebsd-net@FreeBSD.ORG Thu Aug 3 18:08:46 2006 Return-Path: X-Original-To: freebsd-net@freebsd.org Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2299216A4E6 for ; Thu, 3 Aug 2006 18:08:46 +0000 (UTC) (envelope-from cybercorecentre@gmail.com) Received: from ug-out-1314.google.com (ug-out-1314.google.com [66.249.92.172]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6395B43DC5 for ; Thu, 3 Aug 2006 18:07:27 +0000 (GMT) (envelope-from cybercorecentre@gmail.com) Received: by ug-out-1314.google.com with SMTP id m2so2630275uge for ; Thu, 03 Aug 2006 11:07:21 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:user-agent:mime-version:to:subject:references:in-reply-to:content-type:content-transfer-encoding; b=qZ2OlSsk18yOFZxv5YprW7xh5fHt4dzHfy/32Zqkvx/0Scy2o1+YpbyuduDFSqjCyRmqeAwOZEroP5J1qT/4SkeOO1oApZgPK610Tanms9+k6UlXFao0R2ZGsKkVGWrg/LEmxjjOMxQyHr1jw6X/vim5KGQeaWY5WFKXY6Ujxu0= Received: by 10.66.221.19 with SMTP id t19mr3203808ugg; Thu, 03 Aug 2006 11:07:21 -0700 (PDT) Received: from ?192.0.0.52? ( [62.77.228.138]) by mx.gmail.com with ESMTP id k2sm7648490ugf.2006.08.03.11.07.20; Thu, 03 Aug 2006 11:07:21 -0700 (PDT) Message-ID: <44D23B4C.6060202@gmail.com> Date: Thu, 03 Aug 2006 20:07:08 +0200 From: Jax User-Agent: Thunderbird 1.5.0.5 (Windows/20060719) MIME-Version: 1.0 To: freebsd-net@freebsd.org References: <20060801160141.73380.qmail@web56101.mail.re3.yahoo.com> In-Reply-To: <20060801160141.73380.qmail@web56101.mail.re3.yahoo.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: Re: ethernet bridge and dhcpd X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 03 Aug 2006 18:08:46 -0000 Purushotham Nayak wrote: > Hi All, > > Hey! Sorry you dind't get my answer first because I sent in wrong format, so i post it again: Here is a thought, don't setup dhcp server on a bridge. I tried to use firewalling on this but it works differently than in linux where you can control the traffic with --physdev-in -out, you can't determine that which card where the traffic come from and which where it goes, i read something in a handbook but dont remember atm so try to accept all packet on the firewall. You can try to tell dhcpd which interface you want to use but it's possible it won't work. > I have a routerboard with two ethernet ports (sis0 and sis1). I've been trying top setup a bridge and also run the dhcpd server on it. I've setup sis0 with an IP address and sis1 is just marked up in rc.conf. The bridge seems to work because if I statically assign an IP address to a laptop and connect it to sis1 I can ping the routers IP which is what is assigned to sis0. But the laptop cannot get an IP using DHCP. tcpdumping on sis0 doesn't show me the DHCPREQUEST from the laptop that's coming in through sis1 (but it doesn't show me any traffic during ping request either but that's not broadcast so I guess that's expected). > > Here's my rc.conf > > ------------------------------------------------------------------------------------- > inetd_enable="YES" > ifconfig_sis0="inet 10.1.1.1 netmask 255.255.255.0" > broadcast parameter? > ifconfig_sis1="up" > ifconfig_ath0="down" > > gateway_enable="YES" > > this not requied for a bridge > dhcpd_enable="YES" > dhcpd_flags="-q" > try to setup the interface as i told > dhcpd_conf=/usr/local/etc/dhcpd.conf" > ----------------------------------------------------------------------- > > And here is my dhcpd.conf > > ------------------------------------------------------------------------- > ddns-update-style ad-hoc; > default-lease-time 600; > max-lease-time 7200; > > subnet 10.1.1.0 netmask 255.255.255.0 { > range 10.1.1.64 10.1.1.250; > option routers 10.1.1.1; > } > ------------------------------------------------------------------- > > Can anyone please let me know if there is something I'm doing wrong. > > nayak > > I hope it will help. Regards, JaX