Jump to content
Калькуляторы

вопрос по dhcp relay

На свитче Allied Telesis настроен dhcp relay, но работает он странно.

Запросы из vlan12 показываются как запросы из vlan1 и не всегда показывается IP комутатора.

Вот пример лога :

Feb  3 18:32:41 ibm dhcpd: - USER: fc:75:16:21:d7:53 via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 1
Feb  3 18:32:44 ibm dhcpd: - USER: d4:bf:7f:5:4f:f via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:32:47 ibm dhcpd: - USER: d4:bf:7f:5:4f:f via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:32:49 ibm dhcpd: - USER: d4:bf:7f:5:4f:f via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:32:51 ibm dhcpd: - USER: d4:bf:7f:5:4f:f via IP: 172.17.12.1 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:33:06 ibm dhcpd: - USER: 0:1f:c6:c6:66:4c via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 1
Feb  3 18:33:10 ibm dhcpd: - USER: d4:bf:7f:5:4f:f via IP: 172.17.12.1 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:33:18 ibm dhcpd: - USER: 28:28:5d:8c:e7:79 via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 24 in VLAN: 1
Feb  3 18:33:19 ibm dhcpd: - USER: d4:bf:7f:5:4f:f via IP: 172.17.12.1 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:33:22 ibm dhcpd: - USER: 8c:89:a5:57:36:eb via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 1
Feb  3 18:33:24 ibm dhcpd: - USER: d4:bf:7f:5:4f:f via IP: 172.17.12.1 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:33:26 ibm dhcpd: - USER: d4:bf:7f:5:4f:f via IP: 172.17.12.1 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:33:27 ibm dhcpd: - USER: d4:bf:7f:5:4f:f via IP: 172.17.12.1 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:33:28 ibm dhcpd: - USER: d4:bf:7f:5:4f:f via IP: 172.17.12.1 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:33:28 ibm dhcpd: - USER: d4:bf:7f:5:4f:f via IP: 172.17.12.1 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:33:34 ibm dhcpd: - USER: bc:5f:f4:4:9c:ed via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 1
Feb  3 18:34:11 ibm dhcpd: - USER: 0:1e:8c:65:42:2d via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:34:54 ibm dhcpd: - USER: 0:1b:b9:6a:3:a1 via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 1
Feb  3 18:34:57 ibm dhcpd: - USER: fc:75:16:a3:1:a5 via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 1
Feb  3 18:35:11 ibm dhcpd: - USER: fc:75:16:21:d7:53 via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 1
Feb  3 18:35:29 ibm dhcpd: - USER: 0:1e:8c:65:42:2d via IP: 172.17.12.1 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:35:36 ibm dhcpd: - USER: 0:1f:c6:c6:66:4c via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 1

 

Все должны быть из "port: 12 in VLAN: 12".

 

конфиг dhcp relay :

# BOOTP configuration

enable bootp relay

add bootp relay=172.17.1.6

enable bootp relay option82

set bootp relay option82 policy=drop

set bootp relay option82 port=11 trusted=yes

set bootp relay option82 port=16 trusted=yes

dhcp snooping выключен

Share this post


Link to post
Share on other sites

1)убрал ip с vlan1, создал дополнительный vlan для связи с другим свичем.

2)сделал acl запрещающий udp 255.255.255.255 dport=68 и повесил его на vlan смотрящий в стороную dhcp сервера, что б хоходили dhcp запросы только от релея

 

Это правда не решило проблемму с "via IP: 0.0.0.0" , но уже нормально...

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.