On Wed, Sep 26, 2012 at 09:42:05PM +0100, Brian Candler wrote: > (4) Now this is where things get murky for me. pfdhcplistener is running > (two instances?!) but I don't understand exactly what traffic it needs to > see. > > Does it need to see DHCP packets from production subnets only? What if it > also sees DHCP activity from isolation and registration subnets?
Further digging through code: pfdhcplistener is started on all internal interfaces (@listen_ints) and all management interfaces (@dhcplistener_ints) - those arrays are set in lib/pf/config.pm: readPfConfigFiles () - daemons started in lib/pf/services.pm: service_ctl() Each pfdhcplistener instance is started with identical options except -i<interface> Therefore, it appears that pfdhcplistener *does* expect to see both production dhcp traffic and registration/isolation dhcp traffic; and therefore I still can't see any reason why PF needs more than one interface when managing a routed network. I still hope someone can either refute or confirm this - and when I know the score, I would be happy to contribute some extra documentation to clarify. Regards, Brian. ------------------------------------------------------------------------------ How fast is your code? 3 out of 4 devs don\\\'t know how their code performs in production. Find out how slow your code is with AppDynamics Lite. http://ad.doubleclick.net/clk;262219672;13503038;z? http://info.appdynamics.com/FreeJavaPerformanceDownload.html _______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
