[8.172][BUG][UNABLE TO DUPLICATE] Bridge not forwarding DHCP traffic

Hi
I have the following setup for the moment (which is a temporary setup to monitor all traffic).
1x ASG (Software) with 3 interfaces in bridge mode =br0.
br0 = 1x Internet facing Interface and 2x ethernet ports.
Connected to these other Interfaces are 2x ASG's (Software).
These are configured with the Internet facing ports as Cable/DHCP.
When connected to the Cable modem there are able to obtain an IP address with no problems, when connected in series with the bridged ASG and even with the ARP broadcasts turned on they are unable to get an IP address through DHCP. The rules in this Bridged ASG are any= any=any.

Why wont the bridge forward the UDP port 67 requests.

Even though I know the DHCP server IP address if required to setup DHCP Relay this is not possible with a Bridged Interface.

Surely this is a BUG and I'm not the first person to try this method.

Mark

0 Astaro Beta Bot over 13 years ago

Astaro Beta Report
--------------------------------
Version: 8.172
Type: BUG
State: CLOSED/UNABLE TO DUPLICATE
Reporter: Mark_D
Contributor: 
MantisID: 18362
Target version: 
Fixed in version: 
--------------------------------

0 da_merlin over 13 years ago

Hi Mark,

can't reproduce this here, DHCP over bridge works for me.

Do you try to get 3 official IP addresses from your ISP?
Maybe your ISP only allows 1 official IP address...

Cheers
Ulrich
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 Mark_D_01 over 13 years ago in reply to da_merlin

As it is over cable they will not supply fixed IP address's.
After speaking to somebody that I know in the area of the ISP and through my own experiance the cable modem can support 4 seperate IP addresses for connected devices. It is not the cable device, because removing the bridge all OK.
I have even put Wireshark on a spanned port on a switch between the bridge and the cable modem to see what was going on and only pulling hair out.

Mark
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 da_merlin over 13 years ago

So if you replace your ASG with an switch, both remaining ASG get an IP address?
Anything in packetfilter.log?

Cheers
Ulrich
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 Mark_D_01 over 13 years ago in reply to da_merlin

Correct
If you see the attached pic it may help with the current setup.
If I need to reboot the Firewalls I connect them to the Internet click renew "IP address" to get an IP address then connect the normal cabling in to the bridge.
Even though the Firewall rules are any=any=any the firewall logs have a lot of blocked entries in the log I will go through it with a fine tooth comb. I have not seen any thing relevant so far.

Mark
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel