Skip site navigation (1)Skip section navigation (2) 
Date:      Sun, 24 Jun 2007 10:25:08 -0400
From:      Lowell Gilbert <freebsd-questions-local@be-well.ilk.org>
To:        tradigan@newrevolutions.net
Cc:        freebsd-questions@freebsd.org
Subject:   Re: dhcrelay
Message-ID:  <44k5tth1kr.fsf@Lowell-Desk.lan>
In-Reply-To: <53014.208.40.168.12.1182527936.squirrel@www.newrevolutions.net> (tradigan@newrevolutions.net's message of "Fri\, 22 Jun 2007 11\:58\:56 -0400 \(EDT\)")
References:  <53014.208.40.168.12.1182527936.squirrel@www.newrevolutions.net>
next in thread | previous in thread | raw e-mail | index | archive | help 
tradigan@newrevolutions.net writes:

> Not sure if this is the right place for this, but I have a set of FreeBSD
> 6.2 firewalls.  They each have 3 interfaces in them.  One interface
> connects to the 10.94/16 network, the other connects the 192.168.4/24,
> 192.168.5/24 and 192.168.8/24 networks.
>
> Here is a breakdown of the interfaces:
>
> BSD 1
> bge0 10.94.2.222/16
> xl0 "up"
> xl1 "up"
> vlan2 192.168.4.2/24
> vlan3 192.168.5.2/24
> vlan4 192.168.8.2/24
> carp1 10.94.2.221/16
> carp2 192.168.4.1/24
> carp3 192.168.5.1/24
> carp4 192.168.8.1/24
>
> BSD 2
> bge0 10.94.2.223/16
> xl0 "up"
> xl1 "up"
> vlan2 192.168.4.3/24
> vlan3 192.168.5.3/24
> vlan4 192.168.8.3/24
> carp1 10.94.2.221/16
> carp2 192.168.4.1/24
> carp3 192.168.5.1/24
> carp4 192.168.8.1/24
>
> BSD 1 is the current CARP master for all interfaces.  For dhcrelay in
> rc.conf I have:
> dhcrelay_enable="YES"
> dhcrelay_servers="10.94.2.204" # IP to MS Server 2003 DHCP server
> dhcrelay_ifaces="bge0 vlan2 vlan3 vlan4"
> dhcrelay_flags="-a"
>
> In MS Server 2003 there is a superscope defined with scopes for each
> network (10.94/16, 192.168.4., 192.168.5., and 192.168.8.)
>
> The problem is, it doesn't seem like the BSD box is forwarding the DHCP
> requests to the DHCP server.  It will NOT get an address.  If I manually
> assign an IP address, the client talks fine to the other networks.
>
> There are no firewall/nat rules loaded at all.. PF is running but without
> a rule set it defaults to allow all.. any ideas?

Run the relay agent in verbose mode and find out what it thinks is happening.

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?44k5tth1kr.fsf>