DHCP relay IP and gateway IP, possible bad logic?

Igor Smitran sigor at blic.net
Mon Mar 4 10:42:47 CET 2013 

On 03/01/2013 04:12 PM, Alan DeKok wrote:
> Can you supply the debug output?
When set that freeradius sends IP, NETMASK, DNS... *WITHOUT DEFAULT 
GATEWAY*:

*This packet is sent to RELAY_IP*

*$RAD_REPLY{'DHCP-Gateway-IP-Address'} NOT SENT*
---------------------------------------------------------------------------
   TIME: 09:46:24.886544
     OP: 2 (BOOTPREPLY)
  HTYPE: 1 (Ethernet)
   HLEN: 6
   HOPS: 1
   SECS: 0
  FLAGS: 0
CIADDR: 0.0.0.0
YIADDR: CPE_PUBLIC_IP
SIADDR: RADIUS_IP
*GIADDR: PRIVATE_RELAY_IP*
CHADDR: **:**:**:**:**:**:00:00:00:00:00:00:00:00:00:00
  SNAME: .
  FNAME: .
OPTION:  53 (  1) DHCP message type         2 (DHCPOFFER)
OPTION:   1 (  4) Subnet mask               255.255.255.240
OPTION:   2 (  4) Time offset               7200 (2h)
OPTION:   3 (  4) Routers                   RELAY_PRIVATE_IP
OPTION:   6 (  4) DNS server                DNS_IP
OPTION:  12 ( 17) Host name                 HOST_MAC_ADDRESS
OPTION:  15 (  8) Domainname                DOMAIN
OPTION:  51 (  4) IP address leasetime      7200 (2h)
OPTION:  54 (  4) Server identifier         RADIUS_IP
OPTION:  57 (  2) Maximum DHCP message size 1500

####################################################

When set that freeradius sends IP, NETMASK, DNS... *WITH DEFAULT GATEWAY*:

*This packet is sent to GIADDR**, whis is wrong**!!!*

*$RAD_REPLY{'DHCP-Gateway-IP-Address'} SENT*
---------------------------------------------------------------------------
   TIME: 09:46:24.886544
     OP: 2 (BOOTPREPLY)
  HTYPE: 1 (Ethernet)
   HLEN: 6
   HOPS: 1
   SECS: 0
  FLAGS: 0
CIADDR: 0.0.0.0
YIADDR: CPE_PUBLIC_IP
SIADDR: RADIUS_IP
*GIADDR: **$RAD_REPLY{'DHCP-Gateway-IP-Address'}*
CHADDR: **:**:**:**:**:**:00:00:00:00:00:00:00:00:00:00
  SNAME: .
  FNAME: .
OPTION:  53 (  1) DHCP message type         2 (DHCPOFFER)
OPTION:   1 (  4) Subnet mask               255.255.255.240
OPTION:   2 (  4) Time offset               7200 (2h)
OPTION:   3 (  4) Routers                   RELAY_PRIVATE_IP
OPTION:   6 (  4) DNS server                DNS_IP
OPTION:  12 ( 17) Host name                 HOST_MAC_ADDRESS
OPTION:  15 (  8) Domainname                DOMAIN
OPTION:  51 (  4) IP address leasetime      7200 (2h)
OPTION:  54 (  4) Server identifier         RADIUS_IP
OPTION:  57 (  2) Maximum DHCP message size 1500

So, when freeradius sees *DHCP-Gateway-IP-Address *inside reply offer he 
uses it as destination where to send reply which is wrong. He should use 
RELAY IP instead no matter what's inside BOOTREPLY.*



*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20130304/15f71e5c/attachment-0001.html>

More information about the Freeradius-Users mailing list