I've set up a very basic router with only two interfaces: eth0 is my 10.1.0.0 subnet and eth1 is my 10.2.0.0 subnet. The router's default gateway is my Internet router. The subnets are in different buildings on our campus connected via a wireless link. I use them mainly in conjunction with Windows Server 2003 sites to control replication of the of the Active Directory and the Distributed File System set up for user home folders. Internet access, internal routing between my two subnets, and replication of the AD and DFS work fine.
My problem is that dhcp request broadcasts are being forwarded to the 10.2.0.0 subnet from the 10.1.0.0 subnet. Each subnet has its own dhcp server (implemented on 2003 machines not the router). Hosts that should receive 10.1.x.x addresses are receiving 10.2.x.x addresses. dhcp forwarding is not configured on the router. My understanding from the documentation is that the router should automatically block broadcasts. I would appreciate any help in discovering what I'm missing. Below is my configuration.
Thanks,
Robert
protocols {
}
policy {
}
interfaces {
restore: false
loopback lo {
description: ""
}
ethernet eth0 {
disable: false
discard: false
description: ""
hw-id: 00:d0:b7:92:50:b7
duplex: "auto"
speed: "auto"
address 10.1.0.253 {
prefix-length: 16
disable: false
}
}
ethernet eth1 {
disable: false
discard: false
description: ""
hw-id: 00:d0:b7:92:9a:ab
duplex: "auto"
speed: "auto"
address 10.2.0.1 {
prefix-length: 16
disable: false
}
}
}
service {
webgui {
http-port: 80
https-port: 443
}
}
firewall {
log-martians: "enable"
send-redirects: "disable"
receive-redirects: "disable"
ip-src-route: "disable"
broadcast-ping: "disable"
syn-cookies: "enable"
}
system {
host-name: "HSRouter"
domain-name: ""
name-server 206.54.112.1
time-zone: "Denver"
ntp-server "69.59.150.135"
gateway-address: 10.1.0.254
login {
user root {
full-name: ""
authentication {
encrypted-password: "$1$$Ht7gBYnxI1xCdO/JOnodh."
}
}
user vyatta {
full-name: ""
authentication {
encrypted-password: "$1$$Ht7gBYnxI1xCdO/JOnodh."
}
}
}
package {
auto-sync: 1
repository community {
component: "main"
url: "http://archive.vyatta.com/vyatta"
}
}
}
}
policy {
}
interfaces {
restore: false
loopback lo {
description: ""
}
ethernet eth0 {
disable: false
discard: false
description: ""
hw-id: 00:d0:b7:92:50:b7
duplex: "auto"
speed: "auto"
address 10.1.0.253 {
prefix-length: 16
disable: false
}
}
ethernet eth1 {
disable: false
discard: false
description: ""
hw-id: 00:d0:b7:92:9a:ab
duplex: "auto"
speed: "auto"
address 10.2.0.1 {
prefix-length: 16
disable: false
}
}
}
service {
webgui {
http-port: 80
https-port: 443
}
}
firewall {
log-martians: "enable"
send-redirects: "disable"
receive-redirects: "disable"
ip-src-route: "disable"
broadcast-ping: "disable"
syn-cookies: "enable"
}
system {
host-name: "HSRouter"
domain-name: ""
name-server 206.54.112.1
time-zone: "Denver"
ntp-server "69.59.150.135"
gateway-address: 10.1.0.254
login {
user root {
full-name: ""
authentication {
encrypted-password: "$1$$Ht7gBYnxI1xCdO/JOnodh."
}
}
user vyatta {
full-name: ""
authentication {
encrypted-password: "$1$$Ht7gBYnxI1xCdO/JOnodh."
}
}
}
package {
auto-sync: 1
repository community {
component: "main"
url: "http://archive.vyatta.com/vyatta"
}
}
}
_______________________________________________ Vyatta-users mailing list Vyatta-users@mailman.vyatta.com http://mailman.vyatta.com/mailman/listinfo/vyatta-users