Ïðîáëåìû ñ DHCP

[Alex Kud]

Ó ìåíÿ áûë ñäåëàí âòîðîé WAN ñëåäóþùèì îáðàçîì (ñî ñòàòè÷åñêèì IP):

1. Â post-boot ïðîïèñàíî:

robocfg vlan 2 ports "4 5t" vlan 0 ports "1 2 3 5t"
vconfig add eth0 2
ifconfig vlan2 10.10.32.43 broadcast 10.10.32.255 netmask 255.255.255.0 up

è ðîóòû íà âòîðóþ ñåòêó ÷åðåç 10.10.32.1.

2. Â post-firewall:

iptables -t nat -A POSTROUTING -o vlan2 -s ! 10.10.32.43 -j MASQUERADE

È âñå çàìå÷àòåëüíî ðàáîòàëî. Òåïåðü æå ââåëè DHCP. Îí âûäàåò íå òîëüêî IP, ìàñêó, øëþç, ÄÍÑ, íî åùå è ðîóòû. Ïîäñêàæèòå, êàê èçìåíèòü èìåþùèåñÿ íàñòðîéêè, ÷òîáû çàäåéñòâîâàòü DHCP äëÿ âòîðîãî WAN?

[Mam(O)n]

Ìîæíî ïîïðîáîâàòü ïîéòè òóïî â ëîá è èñïîëüçîâàòü ðîäíîé ïðîøèâî÷íûé rc â êà÷åñòâå ñêðèïòà äëÿ udhcpc, ò.å. â post-firewall çàêîììåíòèðîâàòü ìàñêàðäèíã è â post-boot, ïîñëå vconfig çàêîìåíòèðîâàòü ifconfig è ïîñëå äîáàâèòü:

Code:

ifconfig vlan2 up
nvram set wan1_ifname=vlan2
nvram set wan1_proto=dhcp  
echo -e '#!/bin/sh\ninterface=vlan2 /tmp/udhcpc $*' > /tmp/udhcpc1
chmod +x /tmp/udhcpc1
udhcpc -i vlan2 -p /var/run/udhcpc1.pid -s /tmp/udhcpc1 -b

Õîòü broadcom è äåëàë ôóíäàìåíò äëÿ ïîääåðæêè íåñêîëüêèõ wan íî ÿ ñîìíåâàþñü, ÷òî ýòî ñðàáîòàåò è ïðîâåðèòü ìíå ñåé÷àñ íåíà÷åì.

Åñëè íåïîëó÷èòñÿ, òîãäà ïðèäåòñÿ ïèñàòü ñâîé ñêðèïò, êîòîðûé áóäåò îáðàáàòûâàòü ñîáûòèÿ udhcpc è ñîîòâåòñòâåííî íàñòðàèâàòü ñèñòåìó.

[djet]

Ïîäíÿë âòîðîé âëàí èç post-boot:

Code:

# GLDN WIFI                                                                      
robocfg vlan 0 ports "1 2 3 5t" vlan 2 ports "4 5t"                              
vconfig add eth0 2                                                               
/sbin/udhcpc -i vlan2 -p /var/run/udhcpc2.pid -b -s /tmp/udhcpc2

+ êîä udhcpc2:

#!/bin/sh
interface=vlan2
/usr/local/sbin/udhcpc $*
ip rou del 194.154.70.236 via 195.1.2.3 dev vlan1
ip rou add 194.154.70.236/32 via 172.16.0.1 dev vlan2 metric 1
ip rou add 10.40.0.0/24 via 172.16.0.1 dev vlan2 metric 1

Ðåçóëüòàò íåîáû÷íûé: IP-àäðåñ îò vlan2 àññîöèèðóåòñÿ ñ èíòåðôåéñîì vlan1, ïîñëå ÷åãî ïîðòÿòñÿ öåïî÷êè nat:

Code:

[is15-routah:~] tf /opt/var/log/syslog.log         
Jun 11 16:13:50 local0.info udhcpc[9581]: udhcpc (v0.9.9-pre) started
Jun 11 16:13:50 user.emerg client: deconfig: lease is lost
Jun 11 16:13:53 local0.info udhcpc[9581]: Lease of 172.16.254.189 obtained, lease time 1800
Jun 11 16:13:54 user.notice post-firewall: Started post-firewall  vlan2 172.16.254.189 br0 192.168.1.111 vlan1 172.16.254.189
Jun 11 16:13:54 user.notice post-firewall: Leaving post-firewall.
Jun 11 16:13:55 user.err syslog: ERRO: MC-Router API already in use; Errno(125): Address already in use
Jun 11 16:13:55 user.emerg client: bound IP : 172.16.254.189 from 172.16.0.1

Code:

[is15-routah:~] iptables -L -nv -t nat       
Chain PREROUTING (policy ACCEPT 557 packets, 32630 bytes)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 VSERVER    all  --  *      *       0.0.0.0/0            172.16.254.189     
    0     0 VSERVER    all  --  *      *       0.0.0.0/0            172.16.254.189     
    0     0 autofw     tcp  --  br0    *       0.0.0.0/0            0.0.0.0/0          tcp dpt:6881 autofw tcp dpt:6881-6999 to:6881-6999 

Chain POSTROUTING (policy ACCEPT 13 packets, 752 bytes)
 pkts bytes target     prot opt in     out     source               destination         
    0     0 MASQUERADE  all  --  *      vlan2  !172.16.254.189       0.0.0.0/0          
  462 23935 MASQUERADE  all  --  *      vlan1  !172.16.254.189       0.0.0.0/0          
   13  1146 MASQUERADE  all  --  *      br0     192.168.1.0/24       192.168.1.0/24

×òî íåïðàâèëüíî â ýòîé êîíôèãóðàöèè?

[AYuusuke]

Èìååòñÿ 500g premium, fw 1.9.2.7-8.4.

Ïðîâîäíûå êëèåíòû ïðè âêëþ÷åíèè î÷åíü äîëãî ïîëó÷àþò IP. Ìîãóò ìèíóò ïî 10 òóïèòü, ìîãóò ñðàçó ïîäêëþ÷èòüñÿ.  ëîãå ñëåäóþùèå ñîîáùåíèÿ (ìíîãî, ïîêàçàí òîëüêî ìàëåíüêèé êóñî÷åê):

Code:

Jan 19 15:12:26 dnsmasq[82]: DHCPACK(br0) 10.0.17.70 00:17:31:d8:be:8a nickv
Jan 19 15:12:27 dnsmasq[82]: DHCPDISCOVER(br0) 00:17:31:d8:be:8a
Jan 19 15:12:27 dnsmasq[82]: DHCPOFFER(br0) 10.0.17.70 00:17:31:d8:be:8a
Jan 19 15:12:27 dnsmasq[82]: DHCPREQUEST(br0) 10.0.17.70 00:17:31:d8:be:8a
Jan 19 15:12:27 dnsmasq[82]: DHCPACK(br0) 10.0.17.70 00:17:31:d8:be:8a nickv
Jan 19 15:12:28 dnsmasq[82]: DHCPDISCOVER(br0) 00:17:31:d8:be:8a
Jan 19 15:12:28 dnsmasq[82]: DHCPOFFER(br0) 10.0.17.70 00:17:31:d8:be:8a
Jan 19 15:12:28 dnsmasq[82]: DHCPREQUEST(br0) 10.0.17.70 00:17:31:d8:be:8a
Jan 19 15:12:28 dnsmasq[82]: DHCPACK(br0) 10.0.17.70 00:17:31:d8:be:8a nickv
Jan 19 15:12:29 dnsmasq[82]: DHCPDISCOVER(br0) 00:17:31:d8:be:8a
Jan 19 15:12:29 dnsmasq[82]: DHCPOFFER(br0) 10.0.17.70 00:17:31:d8:be:8a
Jan 19 15:12:29 dnsmasq[82]: DHCPREQUEST(br0) 10.0.17.70 00:17:31:d8:be:8a
Jan 19 15:12:29 dnsmasq[82]: DHCPACK(br0) 10.0.17.70 00:17:31:d8:be:8a nickv

Íà áåñïðîâîäíûõ êëèåíòàõ (íîóò è ïîêåò), êëèåíòàõ ïîäêëþ÷àþùèõñÿ ÷åðåç openvpn ïî tap-ó, òàêèõ ïðîáëåì íåòó. Çàäàíà æåñòêàÿ ïðèâÿçêà IP ê mac-àì ÷åðåç web-èíòåðôåéñ. Íà ïðîáëåìíûõ êëèåíòàõ ñòîÿò âñòðîåííûå ãèãàáèòíûå ñåòåâóõè, îäíà èç 965-ãî ÷èïñåòà, äðóãàÿ êàêàÿ òî nVidia íà ìàòåðè ïîä AM2 ñîêåò), WinXP SP2. Ïîäêëþ÷åíû îíè íå ïðÿìî ê asus-ó, à ÷åðåç åùå îäèí ñâèò÷.

Åñëè ëè ó êîãî íèáóäü ìûñëè êàê ìîæíî ðåøèòü äàííóþ ïðîáëåìó? Ïîêà ïðèøëîñü ðóêàìè â ñâîéñòâàõ ñåòåâûõ àäàïòåðîâ çàäàòü âñå íàñòðîéêè, íî ýòî íå óäîáíî.

ps Íà êîðîáî÷êå êðóòèòñÿ íåêîòðîå êîë-âî ñîôòà (dbhub, lighttpd, openvpn, bluetooth pan, proxy è ò.ï.), íî ñ çàãðóçêîé ïðîöåññîðà è êîë-âîì ñâîáîäíîé ïàìÿòè âñå íîðìàëüíî. Ñêîíôèãóðèðîâàíî 2 wan ïîðòà, îäèí pptp, äðóãîé static ip. Ñäåëàí äîïîëíèòåëüíûé ip (alias) íà br0.

[ABATAPA]

Ïðîâîäíûå êëèåíòû ïðè âêëþ÷åíèè î÷åíü äîëãî ïîëó÷àþò IP. Ìîãóò ìèíóò ïî 10 òóïèòü, ìîãóò ñðàçó ïîäêëþ÷èòüñÿ.
...
Íà áåñïðîâîäíûõ êëèåíòàõ (íîóò è ïîêåò), êëèåíòàõ ïîäêëþ÷àþùèõñÿ ÷åðåç openvpn ïî tap-ó, òàêèõ ïðîáëåì íåòó.

Ïîõîæå íà ïðîáëåìû ñ àâòîîïðåäåëåíèåì ñêîðîñòè íà ïîðòàõ. Çàäàéòå ÿâíî íà êîììóòàòîðå (åñëè îí óïðàâëÿåìûé) è íà ðîóòåðå (óæå îáñóæäàëîñü, ïîèñê ïî "robocfg").

[AYuusuke]

Ïîõîæå íà ïðîáëåìû ñ àâòîîïðåäåëåíèåì ñêîðîñòè íà ïîðòàõ. Çàäàéòå ÿâíî íà êîììóòàòîðå (åñëè îí óïðàâëÿåìûé) è íà ðîóòåðå (óæå îáñóæäàëîñü, ïîèñê ïî "robocfg").

Ñïàñèáî çà îòâåò, íî ðåçóëüòàò îòðèöàòåëüíûé.
1. Êîììóòàòîð íå óïðàâëÿåìûé, íè÷åãî íå ïîïðàâèòü;
2. Ïîðò íà ðóòåðå (500gP), ñâÿçûâàþùèé åãî ñ êîììóòàòîðîì ðàáîòàåò ïðàâèëüíî (íà êîììóòàòîðå âèñÿò åùå äðóãèå óñòðîéñòâà);
3. Çàäàë â ñâîéñòâàõ ñåòåâûõ êàðò 100FD - ñèòóàöèÿ íå èçìåíèëàñü.

[Oleg]

Ñóäÿ ïî ëîãó wl500g îòðàáàòûâàåò âñ¸, ÷òî íóæíî. Àäðåñ îíà âûäà¸ò. Êîïàéòå äàëüøå.

[SvetlanaNikit]

ó ìåíÿ ïðèìåðíî òàêàÿ æå ïðîáëåìà âîçíèêëà.
ïîõîæå, ðîóòåð íå äðóæèò ñ ýòèìè âñòðîåííûìè ñåòåâûìè...

íà îäèí èç êîìïîâ ñâîåé äîìàøíåé ñåòè ñòàâèëà openSuSe 10.3 òàê âñòðîåííàÿ â ìîþ "ãèãàáàéòèíó" ñåòåâàÿ íà Realtek 8168 íå ñìîãëà ïîëó÷èòü ñåòåâûå íàñòðîéêè ïî DHCP. à âîò êîãäà ÿ âîòêíóëà â ñâîáîäíûé ñëîò PCI äåøåâóþ êàðòî÷êó îò Acorp íà Realtek 8139 - ïîäöåïèëàñü ñ ïîëîáîðîòà...

[AYuusuke]

Ñóäÿ ïî ëîãó wl500g îòðàáàòûâàåò âñ¸, ÷òî íóæíî. Àäðåñ îíà âûäà¸ò. Êîïàéòå äàëüøå.

Âû îêàçàëèñü ïðàâû, wl500g ðàáîòàåò êàê íàäî.

 ëîêàëüíîì ñåãìåíòå îêàçàëñÿ åùå îäèí DHCP ñåðâåð, ïðè÷åì íàñòðîåííûé î÷åíü ñïåöèôè÷åñêèì îáðàçîì - íà Discover îí íå îòêëèêàåòñÿ, à íà Request çàïðîñû îòâå÷àåò NAK. Ïðè÷èíà ïîÿâëåíèÿ òàêîãî õîñòà ìíå ïîíÿòíà (íå áóäó ðàññêàçûâàòü, äîëãàÿ èñòîðèÿ), íî ÷òî åãî òàê êðèâî íàñòðîèëè ìåíÿ íåñêîëüêî îáåñêóðàæèëî (äîëæåí áûë ïîëíîñòüþ ìîë÷àòü). Êàê ñëåäñòâèå íà çàïðîñû êëèåíòîâ Request ïðèõîäèëî 2 îòâåòà îò ðàçíûõ ñåðâåðîâ (ACK è NAK) è ïîëó÷àëñÿ êëàññè÷åñêèé race condition - ðåçóëüòàò çàâèñèò îò òîãî êòî áûñòðåå îòâåòèò. Ïðè÷åì ïîõîæå ó áåñïðîâîäíûõ êëèåíòîâ ïî êàêèì òî ïðè÷èíàì âåðîÿòíîñòü ïîëó÷èòü ïðàâèëüíûé îòâåò íà ïîðÿäêè áîëüøå ÷åì ó ïðîâîäíûõ (1-5 ïîïûòîê ïðîòèâ 1-600 ïîïûòîê).

Ñïàñèáî çà áûñòðûå îòâåòû.

[SancheSZ]

Ïðîáëåìà âîçìîæíî íå â Asus, íî òåì íå ìåíåå...

Èñïîëüçóþ DHCP äëÿ ðçäà÷è IP êîìïàì â äîìàøíåé ëîêàëêå. Ïè÷åì åñòü ïðèâÿçêà ê MAC, íî äóìàþ ùà ýòî íå âàæíî.

Êîðî÷å ñåãîäíÿ âêëþ÷àþ êîìï - âñå ÎÊ, ïîëó÷àåò ñâîé IP ïî MAC, èíåò ðàáîòàåò. ×åðåç ïîë÷àñ ïðèõîäèò áðàò, âðóáàåò ñâîé êîìï, è ãðèò, ÷òî èíåò íå ïàøåò. Âûñíèë ÷òî åìó âûäàëî IP èç äðóãîé ïîäñåòè (192.168.195., õîòÿ íà ðîóòåðå ñòîèò 172.16.0.). ×åðåç 10 ìèíóò âûëåòåëî è ó ìåíÿ (DHCP lease time ñòîèò 60 ìèí). Ò.å. âèäèìî ïð ïîïûòêå îáíîâèòü IP ìîé êîìï òîæå ïîëó÷èë ëâûé IP, õîòÿ ïðè ïåðâè÷íîì âêëþ÷åíèè îí ïîëó÷èë íîðìàëüíûé IP.

Åñëè ïðîïèñàòü ñòàòè÷åñêèå IP, òî âñå ÎÊ, èíåò ïàøåò. À ïî DHCP âåãäà ïîëó÷àåò ëåâàê. Ðåáóò ðîóòåðà/êîìîâ íå ïîìîã.  ëîãå ðîóòåð ïèøåò, ÷òî âûäàë èï èç íîðìàëüíîé ïîäñåòè, â DHCP leases òîæå âñå íîðìàëüíî îòîáðàæàåòñÿ. Òàê ÷òîò àñóñ íàâåðíî íå âèíîâàò.... Íî ÷òî òîãäà?

Âîçìîæíî ëè êàêèì-òî ëåâûì îáðçîì ñëó÷àéíîå ïîëó÷åíèå êîìïàìè IPà îò DHCP âî âíåøíåé ñåòè? Õîòÿ âðîäå ïðîâ èñïîëüçóåò ñòàòè÷åñêèå èïû è ðîóòåð òàê íàñòðîåí. Äà è ïîäñåòü ëåâûõ èïîâ íå ñîâïàäàå ñ ïîäñåòüþ ïðîâàéäåðà... È âîîáùå âîçìîæíî ëè îëó÷åíèå ëîêàëêîé èïîâ èçâíå ÷åðåç NAT?  êâàðòèðå òî ó ìåíÿ òî÷íî íåòó áîëüøå DHCP ñåðâåðîâ...

Äà, åùå ìîìåíò... Êàê óæ ïèñàë íà ðîóòåðå lease time ïðîïèñàíî 3600 - 60 ìèí. À ïî èíôîðìàöèè âèíäû IP âäàåòñÿ íà 30 ìèíóò, ò.å. ýòî ïîèäåå òîæå ïîêàçûàåò íà òî, ÷òî ïîëó÷àåò îòêóäà-òî íå îòòóäà...

[SancheSZ]

Ïðîáëåìà âñå åùå èìååò ìåñòî áûòü.

Èíîãäà âñå æå êîìï ïîëó÷àåò ïðàâèëüíûé àäðåñ îò ðîóåðà.

Ïðè áîëåå äåòàëüíîì èçó÷åíèè ëîãîâ ðîóòåðà îáíàðóæèë ñëåäóþùåå:

ïðè çàïðîñå ip àäðåñà êîìï äåëàåò dhcpdscover, ðîóòåð ïðåäëàãàåò åìó ïðàâèëüíûé ip - dhcpoffer, à âîò dhcpack â ëîãàõ åñòü íå âñåãäà - òîëüêî òîãäà êîãäà êîìï òàêè ïîëó÷àåò ïðàâèëüíé IP.

Ò.å. ïîëó÷àåòñÿ â ñåòè ñóùåñâóåò åùå îäèí DHCP ñåðâåð, êîòîðîìó êîïû ïî÷åìó-òî ÷àùå îòäàþò ïðåäïî÷òåíèå.

Åñòü ïðäëîæåíèÿ êàê åãî íàéòè è èñêîðåíèòü? È ìæåò ëè îí áûòü ñî ñòîðîíû WAN?

[avk]

Êîãäà êîìï ïîëó÷àåò "ëåâûé" àäðåñ, ÷òî ñòîèò â ñòðîêå DCHP-ñåðâåð â ñâîéñòâàõ ïîäêëþ÷åíèÿ? (ipconfig/all)

[SancheSZ]

ôðàãìåíò âûâîäà iconfig /all

Dhcp âêëþ÷åí. . . . . . . . . . . : äà
Àâòîíàñòðîéêà âêëþ÷åíà . . . . . : äà
IP-àäðåñ . . . . . . . . . . . . : 192.168.195.132
Ìàñêà ïîäñåòè . . . . . . . . . . : 255.255.255.0
Îñíîâíîé øëþç . . . . . . . . . . :
DHCP-ñåðâåð . . . . . . . . . . . : 192.168.195.254
DNS-ñåðâåðû . . . . . . . . . . . : 192.168.195.1
Àðåíäà ïîëó÷åíà . . . . . . . . . : 14 ôåâðàëÿ 2008 ã. 19:30:21
Àðåíäà èñòåêàåò . . . . . . . . . : 14 ôåâðàëÿ 2008 ã. 20:00:21

P.S.: èç ñèòóàöèè âûõîæó ïðîïèñûâàíèåì ñòàòè÷ñêòãî èïà íà ñåòåâóõå, íî õî÷åòñÿ âñåæå ðàçîáðàòüñÿ â ïðè÷èíå....
P.P.S.: åñëè íà ðîóòåðå îòêëþ÷èòü DHCP, òî ëåâûå èïû ïðîäîëæàþò âûäàâàòüñÿ (íåóäåâèòåëüíî)

[SancheSZ]

Òàê, ïîäëÿíêà ñèäèò ïîõîäó íà ìîåì æå êîìïå ))

Ïî êðàéíåé ìåðå êîãäà îí îòêëþ÷åí îò ñåòè (âûêëþ÷åí\âûäåðíóò ñåòåâîé øíóð\îòêëþ÷åíà ñåòåâóõà à ïîêäêëþ÷åíèÿõ), äðóãèå êîìïû ïëó÷àþò íîðìàëüíûå èïû.

OS: Vista Ultimate x64

Ïîäîçðåâàþ, ÷òî êàêîé-òî âèðü\òðîÿí. Õîòÿ NOD32 íè÷åãî íå ïàëèò.

[GearST]

äàâíî íå þçàë êîðîáî÷êó ò.ê. îòïàëà íóæäà, íåäàâíî äåâà÷êî ïîÿâèëîñü â äîìå ñ áóêîì ïîíàäîáèëñÿ âèôè, íî ýòî òàê ëèðèêà =) êîðî÷å êîðîáî÷êà áûëà îòêîïàíà, ïîòîì ïîñëåäîâàë ïåðåõîä íà ñåé ôîðóì, ñêà÷àíà è ïðîøèòà ïîñëåäíÿÿ(?) ïðîøèâêà 1.9.2.7-8, ïîñëå ÷åãî êîðîáî÷êà ïîäêëþ÷åííà ê ïðîâîäó ïðîâàéäåðà ImSys (ÑÂÀÎ) - ðàçäàþòñÿ òàì èïû ïî dhcp, íî ê ñîæàëåíèþ ðîóòåð íèâêàêóþ íå ïîëó÷àåò èï õîòÿ ÁÁ íà âèíäå åãî ïîëó÷àåò, ñòðîêè ëîãà ñîäåðæàò ïðèìåðíî òàêóþ èíôó:
udhcpc (v0.9.9-pre) started
dnsmasq read /etc/hosts - 5 adresses
dnsmasq reading /tmp/resolv.conf
dhcp deconfig: lease is lost
wan: connected manually

è òèøèíà =(
Ãäå-òî òóò ÷èòàë ÷òî íå ïàøóò îäíîâðåìåííî ëîêàëüíûé äõöï è ïîëó÷åíèå âíåøíåãî èïà, îòêëþ÷èë ëîêàëüíûé, òå æå ãðàáëè, íå ìîãó ïîíÿòü ãäå êîñÿê, ïî èäåå ñî ñòîðîíû ïðîâà íå äîëæíî áûòü ïðîáëåì ñ ìàêàìè â ñìûñëå ïîëó÷åíèÿ èïà ïî íèì.
Îñòàåòñüÿ òîëüêî ïðîáîâàòü ñòàâèòü ñòàòè÷íûé ÈÏ ïî ïðèìåðó ïîëó÷åííîãî Èïà íà ÁÁ, íî âñåæå õîòåëîñü áû ÷òîáû áûë è ëîêàëüíûé dhcp è ñàì ðîóòåð ïîëó÷àë ÈÏ
Çû êîðîáêà ïàøåò â ðåæèìå õîóì ãåéòâåé èáî çàìîðà÷èâàòüñÿ ñ ðîóòàìè ùàñ íåòó æåëàíèÿ.