Logically isolated VPNs with MPLS - Centralized DHCP

scott_stone at trendmicro.com scott_stone at trendmicro.com
Tue Nov 1 03:31:28 UTC 2011 

This one is fairly easy, if this is the entire config file.

The lease origin 10.32.0.22 isn't a member of either of the subnet declarations in your configuration.  You need to write a subnet declaration matching that network.

====================
Scott Stone <scott_stone at trendmicro.com>
Manager, DCS-RD
Trend Micro, Inc. http://www.trendmicro.com


-----Original Message-----
From: dhcp-users-bounces+scott_stone=trendmicro.com at lists.isc.org [mailto:dhcp-users-bounces+scott_stone=trendmicro.com at lists.isc.org] On Behalf Of Ronald F. Tallman
Sent: Monday, October 31, 2011 8:29 PM
To: 'Users of ISC DHCP'
Subject: RE: Logically isolated VPNs with MPLS - Centralized DHCP

It is a minimal config:


stash-agent-options true;

shared-network LabNet {

# LABNET Wireless Class
class "wifi-dev" {
match if option agent.circuit-id="020c020a00000a20";
lease limit 10;
                 }

subnet 10.200.17.0 netmask 255.255.255.0 {}

#Create a new pool for each class.
subnet 10.32.166.0 netmask 255.255.255.0 {
   option routers 10.32.166.1;
   option broadcast-address 10.32.166.255;
        pool {
        allow members of "wifi-dev";
        range 10.32.166.44 10.32.166.53;
             }

The only thing from the logs:

Oct 23 22:48:23 sea-securid-1 last message repeated 5 times
Oct 23 22:53:49 sea-securid-1 dhcpd: [ID 702911 local7.error] DHCPDISCOVER
from 5c:26:0a:1b:58:bb via 10.32.0.22: network LabNet: no free leas
es
Oct 23 22:55:16 sea-securid-1 last message repeated 7 times
Oct 23 23:00:37 sea-securid-1 dhcpd: [ID 702911 local7.error] DHCPDISCOVER
from 5c:26:0a:1b:58:bb via 10.32.0.22: network LabNet: no free leas
es

---------------
The 10.32.166.1 interface is in the VRF on the same router 10.32.0.22
That has the relay agent.
The 10.200.17.0 subnet is where central DHCP server lives.

-----Original Message-----
From: dhcp-users-bounces+ronthu=comcast.net at lists.isc.org
[mailto:dhcp-users-bounces+ronthu=comcast.net at lists.isc.org] On Behalf Of
Simon Hobson
Sent: Monday, October 31, 2011 9:26 AM
To: Users of ISC DHCP
Subject: Re: Logically isolated VPNs with MPLS - Centralized DHCP

Ronald F. Tallman wrote:
>Looking for a centralized DHCP solution that supports the following:
>
>.       Numerous VPNs isolated with MPLS - 
>Therefore isolated/separated subnets.
>.       Clients dispatch DHCP request
>.       Cisco router/relay agent forwards 
>request to centralized DHCP server to management 
>subnet

The ISC package will handle that - it doesn't 
really care how the packet gets to it. But bear 
in mind that you will need to have unique subnet 
addresses across the entire network served by a 
single DHCP server.

>.       Presently DHCP server recognizes 
>forwarded request but will not serve IP as it's 
>sourced from "Unknown Subnet"
>
>.       The subnet is actively provisioned in the DHCP server configuration

Then you'd best post the relevant parts of the config and logs.

-- 
Simon Hobson

Visit http://www.magpiesnestpublishing.co.uk/ for books by acclaimed
author Gladys Hobson. Novels - poetry - short stories - ideal as
Christmas stocking fillers. Some available as e-books.
_______________________________________________
dhcp-users mailing list
dhcp-users at lists.isc.org
https://lists.isc.org/mailman/listinfo/dhcp-users

_______________________________________________
dhcp-users mailing list
dhcp-users at lists.isc.org
https://lists.isc.org/mailman/listinfo/dhcp-users
TREND MICRO EMAIL NOTICE
The information contained in this email and any attachments is confidential and may be subject to copyright or other intellectual property protection. If you are not the intended recipient, you are not authorized to use or disclose this information, and we request that you notify us by reply mail or telephone and delete the original message from your mail system.

More information about the dhcp-users mailing list