Geeks, Well I think I have finally found the issue. I am in the process of moving from an IPCop box to a LightSpeed box and I had both in line and they were working fine for a couple of weeks. I think I must have changed a setting on the LightSpeed that caused all the problems. Two of the 3 NICs in the LightSpeed were set to use DHCP by the vendor that installed it. Whatever I changed in LightSpeed (I have not looked at the settings yet) caused the LightSpeed server to block SOME of the DHCP traffic. My guess if was blocking BROADCASTS from the DHCP server, but it was NOT blocking the unicasts. It seemed to be letting stuff go through on port 67 and 68 because I was seeing DHCPDiscovery, DHCPInform, DHCPOffer in the wireshark packets, but I never saw a DHSCPRequest or a DHCPAck. From what I understand the DHCPRequests are sent via broadcast and not unicast. So if LightSpeed was blocking broadcasts on port 67 and 68 then no DHCPRequests got through, then not DHCPAck's would ever be called for.
So - Over time the lease on the DHCP address on the LightSpeed NICs expired and then they were unable to request an IP and stuff just got worse and worse. When I started eliminating possibilities I noticed that the NICs on the LightSpeed were not talking and could not renew. Once I took the LightSpeed out of the path between the IPCop and the outside world stuff started working again. Now I just have to get the LightSpeed back in line and set up again. Thanks Aaron for helping me ferret out the problem. -----Original Message----- From: tech-geeks-boun...@tech-geeks.org [mailto:tech-geeks-boun...@tech-geeks.org] On Behalf Of Charlie Niehaus Sent: Tuesday, September 28, 2010 1:55 PM To: 'Tech-Geeks Mailing List' Subject: Re: [tech-geeks] IPCop - DHCP not responding. We might be onto something. I noticed a number of entries like: Sep 28 13:09:52 ipcop dhcpd: DHCPACK to 10.0.1.41 (<no client hardware address>) via eth0 Sep 28 13:09:54 ipcop dhcpd: DHCPINFORM from 10.0.1.41 via eth0 Sep 28 13:09:54 ipcop dhcpd: DHCPACK to 10.0.1.41 (<no client hardware address>) via eth0 Sep 28 13:12:48 ipcop dhcpd: DHCPINFORM from 10.0.1.40 via eth0 Sep 28 13:12:48 ipcop dhcpd: DHCPACK to 10.0.1.40 (<no client hardware address>) via eth0 Sep 28 13:12:50 ipcop dhcpd: DHCPINFORM from 10.0.1.40 via eth0 Sep 28 13:12:50 ipcop dhcpd: DHCPACK to 10.0.1.40 (<no client hardware address>) via eth0 Sep 28 13:14:02 ipcop dhcpd: DHCPINFORM from 10.0.1.41 via eth0 Sep 28 13:14:02 ipcop dhcpd: DHCPACK to 10.0.1.41 (<no client hardware address>) via eth0 Sep 28 13:14:04 ipcop dhcpd: DHCPINFORM from 10.0.1.41 via eth0 Sep 28 13:14:04 ipcop dhcpd: DHCPACK to 10.0.1.41 (<no client hardware address>) via eth0 Sep 28 13:14:17 ipcop dhcpd: DHCPINFORM from 10.0.1.79 via eth0 Sep 28 13:14:17 ipcop dhcpd: DHCPACK to 10.0.1.79 (00:0c:f1:75:ba:d7) via eth0 Sep 28 13:27:32 ipcop dhcpd: DHCPINFORM from 10.0.1.59 via eth0 Sep 28 13:27:32 ipcop dhcpd: DHCPACK to 10.0.1.59 (<no client hardware address>) via eth0 Sep 28 13:27:34 ipcop dhcpd: DHCPINFORM from 10.0.1.59 via eth0 Sep 28 13:27:34 ipcop dhcpd: DHCPACK to 10.0.1.59 (<no client hardware address>) via eth0 So it looks like for some reason the DHCP is not able to get the MAC address of the boxes requesting an IP? SOME make it through. This does seem to point to the DHCP server itself and not a rogue on the network or something like that. Ok - so . . new NIC? What do we look for next. -----Original Message----- From: tech-geeks-boun...@tech-geeks.org [mailto:tech-geeks-boun...@tech-geeks.org] On Behalf Of Aaron Hackney Sent: Monday, September 27, 2010 4:12 PM To: Tech-Geeks Mailing List Subject: Re: [tech-geeks] IPCop - DHCP not responding. cat /var/log/messages | grep -i dhcpd On Mon, Sep 27, 2010 at 3:35 PM, Charlie Niehaus <cnieh...@altamont.k12.il.us> wrote: > I am restarting the server with > Shutdown -r now > When I make any changes. > Is there a command line command I can issue to just restart the DHCP server? > > Looking at the log files is a good idea. What log file should I look at? > (Remember - 4th grader here - where is it, and what is the name?) > > Thanks again for all the help so far. > > > -----Original Message----- > From: tech-geeks-boun...@tech-geeks.org > [mailto:tech-geeks-boun...@tech-geeks.org] On Behalf Of Aaron Hackney > Sent: Monday, September 27, 2010 2:38 PM > To: Tech-Geeks Mailing List > Subject: Re: [tech-geeks] IPCop - DHCP not responding. > > Also, take a peek at the log files. If it's a problem with the > daemon/permission issues/out of IP Addresses, then your answer will be > there. > > Id's till be curious to see if the DHCP discovery messages are getting > to the server and what the server is doing in response..... > > > On Mon, Sep 27, 2010 at 1:53 PM, K Lesko <kle...@gmail.com> wrote: >> Opps read your post over again and it looks like you addressed the range >> issue. Are you restarting the DHCP service after you make changes to the >> config file? >> >> On Mon, Sep 27, 2010 at 1:26 PM, K Lesko <kle...@gmail.com> wrote: >>> >>> Have you checked to see if any other processes may have crashed on the >>> box? >>> From terminal run: >>> ps aux|grep defunct >>> to see any processes that may have crashed. >>> If nothing shows up as defunct and your logs aren't showing errors I > think >>> Eric may have the right ideal about a bad NIC. >>> I am definitely no expert but on your DHCP.CONF file you have: >>> subnet 10.0.0.0 netmask 255.255.0.0 #GREEN >>> { >>> range 10.0.2.50 10.0.2.255; >>> option subnet-mask 255.255.0.0; >>> Does this range declaration limit the dynamic IPs to those between the >>> 10.0.2.50 and 10.0.2.255? So are you sure you have any IPs left to hand >>> out? >>> Hopefully someone more qualified can chime in on this . . . >>> >>> >>> >>> On Mon, Sep 27, 2010 at 12:56 PM, Abe Loveless > <li...@lovelesscentral.org> >>> wrote: >>>> >>>> ?? You're not going to want a router managing dhcp are you? >>>> >>>> What do the system stats show you on the status pages, etc? I've always >>>> heard that too large of a DHCP Range can really suck the memory out of a >>>> box. Also, did you verify that you have plenty of disk space free? That >>>> should also be available on one of the status screens. >>>> >>>> Is your content filter also on this machine? Any problems with that? >>>> >>>> >>>> >>>> >>>> >>>> On 9/27/2010 12:47 PM, Charlie Niehaus wrote: >>>>> >>>>> Thanks Abe. Now just tell me why the boxes can not assign the IP? >>>>> >>>>> Might be a moot point - looking to replace it with a router. >>>>> >>>>> >>>>> -----Original Message----- >>>>> From: tech-geeks-boun...@tech-geeks.org >>>>> [mailto:tech-geeks-boun...@tech-geeks.org] On Behalf Of Abe Loveless >>>>> Sent: Monday, September 27, 2010 11:51 AM >>>>> To: Tech-Geeks Mailing List >>>>> Subject: Re: [tech-geeks] IPCop - DHCP not responding. >>>>> >>>>> >>>>> >>>>> On 9/26/2010 11:59 PM, Charlie Niehaus wrote: >>>>>> >>>>>> The range of IP's is OK: I noticed that when I ran the Rogue DHCP >>>>>> checker >>>>>> program it ALWAYS picked up the HIGHEST IP in the range - even if I >>>>>> change >>>>>> the range and gave it MORE Ip's to hand out. >>>>> >>>>> It always does that. IPCop starts handing out the at the top. The SME >>>>> Server's used to start at the bottom. >>>>> | Subscription info at http://www.tech-geeks.org | >>>>> >>>>> | Subscription info at http://www.tech-geeks.org | >>>>> >>>>> >>>> | Subscription info at http://www.tech-geeks.org | >>> >> >> >> | Subscription info at http://www.tech-geeks.org | >> > > > > -- > "Don't ask yourself what the world needs. Ask yourself what makes you > come alive and then go do that. Because what the world needs is people > who have come alive." -Dr. Howard Thurman > > ****************************** > Aaron Keith Hackney > aa...@aaronkeithstudios.com > Cell 210.325.2196 > ****************************** > | Subscription info at http://www.tech-geeks.org | > > | Subscription info at http://www.tech-geeks.org | > -- "Don't ask yourself what the world needs. Ask yourself what makes you come alive and then go do that. Because what the world needs is people who have come alive." -Dr. Howard Thurman ****************************** Aaron Keith Hackney aa...@aaronkeithstudios.com Cell 210.325.2196 ****************************** | Subscription info at http://www.tech-geeks.org | | Subscription info at http://www.tech-geeks.org | | Subscription info at http://www.tech-geeks.org |
