Wednesday, November 18, 2020

Re: Wrong net in vlan

-----BEGIN PGP SIGNATURE-----
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=jlEo
-----END PGP SIGNATURE-----
> Am 18.11.2020 um 11:00 schrieb Stuart Henderson <stu@spacehopper.org>:
>
> On 2020-11-18, Axel Rau <Axel.Rau@chaos1.de> wrote:
>> I think, the problem is that all vlans share the same lladr (see recent ifconfigs).
>> To allow dhcpd to distinguish the vlans, I have to set the mac addresses manually.
>> Will try this later.
>
> No this is totally normal, there is no need to touch the MAC address.
> All you need to do is configure the parent interface "up", set the
> tag and parent interface, add the subnet to dhcpd.conf (and add the
> interface to dhcpd_flags if you don't let it pick them automatically).

AFAIK, that was exactly, what I did:

dhcpd_flags="em0 em3 vlan11 vlan12 vlan13 vlan14 vlan15 vlan16"

gw1# ifconfig vlan
vlan11: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 00:60:e0:5a:75:43
index 13 priority 0 llprio 3
encap: vnetid 11 parent em3 txprio packet rxprio outer
groups: vlan
media: Ethernet autoselect (1000baseT full-duplex)
status: active
inet 172.16.11.1 netmask 0xffffff00 broadcast 172.16.11.255
inet6 fe80::260:e0ff:fe5a:7543%vlan11 prefixlen 64 scopeid 0xd
inet6 xxxx:yyyy:zzzz:16:11::a prefixlen 80
vlan12: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 00:60:e0:5a:75:43
index 14 priority 0 llprio 3
encap: vnetid 12 parent em3 txprio packet rxprio outer
groups: vlan
media: Ethernet autoselect (1000baseT full-duplex)
status: active
inet 172.16.12.1 netmask 0xffffff00 broadcast 172.16.12.255
inet6 fe80::260:e0ff:fe5a:7543%vlan12 prefixlen 64 scopeid 0xe
inet6 xxxx:yyyy:zzzz:16:12::a prefixlen 80
vlan13: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 00:60:e0:5a:75:43
index 15 priority 0 llprio 3
encap: vnetid 13 parent em3 txprio packet rxprio outer
groups: vlan
media: Ethernet autoselect (1000baseT full-duplex)
status: active
inet 172.16.13.1 netmask 0xffffff00 broadcast 172.16.13.255
inet6 fe80::260:e0ff:fe5a:7543%vlan13 prefixlen 64 scopeid 0xf
inet6 xxxx:yyyy:zzzz:16:13::a prefixlen 80
vlan14: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 00:60:e0:5a:75:43
index 16 priority 0 llprio 3
encap: vnetid 14 parent em3 txprio packet rxprio outer
groups: vlan
media: Ethernet autoselect (1000baseT full-duplex)
status: active
inet 172.16.14.1 netmask 0xffffff00 broadcast 172.16.14.255
inet6 fe80::260:e0ff:fe5a:7543%vlan14 prefixlen 64 scopeid 0x10
inet6 xxxx:yyyy:zzzz:16:14::a prefixlen 80
vlan15: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 00:60:e0:5a:75:43
index 17 priority 0 llprio 3
encap: vnetid 15 parent em3 txprio packet rxprio outer
groups: vlan
media: Ethernet autoselect (1000baseT full-duplex)
status: active
inet 172.16.15.1 netmask 0xffffff00 broadcast 172.16.15.255
inet6 fe80::260:e0ff:fe5a:7543%vlan15 prefixlen 64 scopeid 0x11
inet6 xxxx:yyyy:zzzz:16:15::a prefixlen 80
vlan16: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 00:60:e0:5a:75:43
index 18 priority 0 llprio 3
encap: vnetid 16 parent em3 txprio packet rxprio outer
groups: vlan
media: Ethernet autoselect (1000baseT full-duplex)
status: active
inet 172.16.16.1 netmask 0xffffff00 broadcast 172.16.16.255
inet6 fe80::260:e0ff:fe5a:7543%vlan16 prefixlen 64 scopeid 0x12
inet6 xxxx:yyyy:zzzz:16:16::a prefixlen 80
gw1# ifconfig em3
em3: flags=8b43<UP,BROADCAST,RUNNING,PROMISC,ALLMULTI,SIMPLEX,MULTICAST> mtu 1500
lladdr 00:60:e0:5a:75:43
index 4 priority 0 llprio 3
media: Ethernet autoselect (1000baseT full-duplex)
status: active
inet 172.16.63.1 netmask 0xffffff00 broadcast 172.16.63.255
inet6 fe80::260:e0ff:fe5a:7543%em3 prefixlen 64 scopeid 0x4
inet6 xxxx:yyyy:zzzz:16::a prefixlen 80
gw1# ifconfig carp3
carp3: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
lladdr 00:00:5e:00:01:04
index 12 priority 15 llprio 3
carp: MASTER carpdev em3 vhid 4 advbase 1 advskew 0
groups: carp
status: master
inet 172.16.63.9 netmask 0xffffff00 broadcast 172.16.63.255
inet6 fe80::200:5eff:fe00:104%carp3 prefixlen 64 scopeid 0xc
inet6 xxxx:yyyy:zzzz:16::c prefixlen 80

From /etc/dhcpd.conf:
- - -
shared-network WLAN-NET {
option domain-name "wlan.chaos1.de";
option domain-name-servers 192.1.2.3, 80.12.4.171;
option ntp-servers 192.1.2.4, 80.12.4.170;

subnet 172.16.63.0 netmask 255.255.255.0 {
option routers 172.16.63.1;
option ntp-servers 192.1.2.4, 80.12.4.170;

range 172.16.63.200 172.16.63.230;

# cap01 MikroTik WLAN Access Point
host static-client {
hardware ethernet 4a:0b:bc:54:0c:fa;
fixed-address 172.16.63.11;
}
# cap02 MikroTik WLAN Access Point
host static-client {
hardware ethernet c4:ad:34:f5:4d:1e;
fixed-address 172.16.63.12;
}
# cap03 MikroTik WLAN Access Point
host static-client {
hardware ethernet c4:ad:34:f5:4d:4e;
fixed-address 172.16.63.13;
}
# cap04 MikroTik WLAN Access Point
host static-client {
hardware ethernet c4:ad:34:f5:43:ba;
fixed-address 172.16.63.14;
}
}

subnet 172.16.11.0 netmask 255.255.255.0 {
option routers 172.16.11.1;
range 172.16.11.100 172.16.11.200;
}
subnet 172.16.12.0 netmask 255.255.255.0 {
option routers 172.16.12.1;
range 172.16.12.100 172.16.12.200;
}
subnet 172.16.13.0 netmask 255.255.255.0 {
option routers 172.16.13.1;
range 172.16.13.100 172.16.13.200;
}
subnet 172.16.14.0 netmask 255.255.255.0 {
option routers 172.16.14.1;
range 172.16.14.100 172.16.14.200;
}
subnet 172.16.15.0 netmask 255.255.255.0 {
option routers 172.16.15.1;
range 172.16.15.100 172.16.15.200;
}
subnet 172.16.16.0 netmask 255.255.255.0 {
option routers 172.16.16.1;
range 172.16.16.100 172.16.16.200;
}
}
. . .
- - -

What did I wrong?

Axel
---
PGP-Key: CDE74120 ☀ computing @ chaos claudius

No comments:

Post a Comment