Multiple chrooted dhcp servers for vlans on Linux?

[stevel_isc at jbco.com]

The goal is to have multiple chrooted dhcpd processes, one for each of four
vlans, such that a compromise of a more public one won't affect a more
private one.

 

Server version is isc-dhcpd-4.3.3-P1 and Linux is a recent install of
Debian.

 

I've got them all running but looking at dhcpd processes in netstat I don't
think it'll actually work in practice.  

 

Even though each one is specified to a particular vlan interface they all
appear to be listening to 0.0.0.0 and I see nothing visible differentiating
them.

 

Are they really all listing on every vlan, and does that mean incoming
requests over one vlan will be handled by whatever server happens to grab
the request (3 out of 4 chance it's the wrong one)?

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/dhcp-users/attachments/20160226/95815f5f/attachment.html>