Sunday, September 30, 2007

arp_proxy does not work with static DHCP/PERM arp ?

Hello,
Yesterday after starting using arp_proxy i've received many lines like
this (in syslog) :

Sep 30 21:15:28 beta dhcpd: DHCPDISCOVER from 00:17:08:49:22:80 via eth1
Sep 30 21:15:28 beta dhcpd: DHCPOFFER on 10.100.1.21 to
00:17:08:49:22:80 via eth1
Sep 30 21:15:28 beta dhcpd: DHCPREQUEST for 10.100.1.21 (10.100.0.1)
from 00:17:08:49:22:80 via eth1
Sep 30 21:15:28 beta dhcpd: DHCPACK on 10.100.1.21 to 00:17:08:49:22:80 via eth1
Sep 30 21:15:29 beta dhcpd: DHCPDECLINE of 10.100.1.21 from
00:17:08:49:22:80 via eth1: not found


I have some DHCP net clients that are masqueraded and they are simply
put in dhcpd.conf like this :

host USERXXX { hardware ethernet 00:17:08:49:22:80; fixed-address
10.100.1.21; }

and with static MACaddr:

beta log # arp -an | grep 10.100.1.21
? (10.100.1.21) at 00:17:08:49:22:80 [ether] PERM on eth1


after switching:

net.ipv4.conf.all.proxy_arp = 0

to :

net.ipv4.conf.all.proxy_arp = 1

the above logs started to appear...

NAturally clients can't obtain IP address and don't have internet access.
What's wrong ? Can't I use proxy arp with static DHCP/static ARP ?
Why does my DHCP server decline to assign an IP address to a host
after makingh my router an arp_proxy ?

Here's arp fragment from my sysctl :


net.ipv4.conf.all.arp_ignore = 1
net.ipv4.conf.all.arp_announce = 1
net.ipv4.conf.eth1.arp_ignore = 0
net.ipv4.conf.eth1.arp_announce = 0
net.ipv4.conf.eth0.arp_ignore = 1
net.ipv4.conf.eth0.arp_announce = 1

p.s. eth1 -> lan
eth0 -> internet


--
Wojciech Ziniewicz
Unix SEX :{look;gawk;find;sed;talk;grep;touch;finger;find;fl
ex;unzip;head;tail; mount;workbone;fsck;yes;gasp;fsck;more;yes;yes;eje
ct;umount;makeclean; zip;split;done;exit:xargs!!;)}


--
To UNSUBSCRIBE, email to debian-firewall-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

No comments:

Post a Comment