Jump to content
Калькуляторы

вопрос по dhcp relay

На свитче Allied Telesis настроен dhcp relay, но работает он странно.

Запросы из vlan12 показываются как запросы из vlan1 и не всегда показывается IP комутатора.

Вот пример лога :

Feb  3 18:32:41 ibm dhcpd: - USER: fc:75:16:21:d7:53 via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 1
Feb  3 18:32:44 ibm dhcpd: - USER: d4:bf:7f:5:4f:f via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:32:47 ibm dhcpd: - USER: d4:bf:7f:5:4f:f via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:32:49 ibm dhcpd: - USER: d4:bf:7f:5:4f:f via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:32:51 ibm dhcpd: - USER: d4:bf:7f:5:4f:f via IP: 172.17.12.1 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:33:06 ibm dhcpd: - USER: 0:1f:c6:c6:66:4c via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 1
Feb  3 18:33:10 ibm dhcpd: - USER: d4:bf:7f:5:4f:f via IP: 172.17.12.1 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:33:18 ibm dhcpd: - USER: 28:28:5d:8c:e7:79 via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 24 in VLAN: 1
Feb  3 18:33:19 ibm dhcpd: - USER: d4:bf:7f:5:4f:f via IP: 172.17.12.1 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:33:22 ibm dhcpd: - USER: 8c:89:a5:57:36:eb via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 1
Feb  3 18:33:24 ibm dhcpd: - USER: d4:bf:7f:5:4f:f via IP: 172.17.12.1 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:33:26 ibm dhcpd: - USER: d4:bf:7f:5:4f:f via IP: 172.17.12.1 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:33:27 ibm dhcpd: - USER: d4:bf:7f:5:4f:f via IP: 172.17.12.1 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:33:28 ibm dhcpd: - USER: d4:bf:7f:5:4f:f via IP: 172.17.12.1 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:33:28 ibm dhcpd: - USER: d4:bf:7f:5:4f:f via IP: 172.17.12.1 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:33:34 ibm dhcpd: - USER: bc:5f:f4:4:9c:ed via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 1
Feb  3 18:34:11 ibm dhcpd: - USER: 0:1e:8c:65:42:2d via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:34:54 ibm dhcpd: - USER: 0:1b:b9:6a:3:a1 via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 1
Feb  3 18:34:57 ibm dhcpd: - USER: fc:75:16:a3:1:a5 via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 1
Feb  3 18:35:11 ibm dhcpd: - USER: fc:75:16:21:d7:53 via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 1
Feb  3 18:35:29 ibm dhcpd: - USER: 0:1e:8c:65:42:2d via IP: 172.17.12.1 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 12
Feb  3 18:35:36 ibm dhcpd: - USER: 0:1f:c6:c6:66:4c via IP: 0.0.0.0 (SWMAC: 00:0:cd:20:a3:a8) on port: 12 in VLAN: 1

 

Все должны быть из "port: 12 in VLAN: 12".

 

конфиг dhcp relay :

# BOOTP configuration

enable bootp relay

add bootp relay=172.17.1.6

enable bootp relay option82

set bootp relay option82 policy=drop

set bootp relay option82 port=11 trusted=yes

set bootp relay option82 port=16 trusted=yes

dhcp snooping выключен

Share this post


Link to post
Share on other sites

1)убрал ip с vlan1, создал дополнительный vlan для связи с другим свичем.

2)сделал acl запрещающий udp 255.255.255.255 dport=68 и повесил его на vlan смотрящий в стороную dhcp сервера, что б хоходили dhcp запросы только от релея

 

Это правда не решило проблемму с "via IP: 0.0.0.0" , но уже нормально...

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this