Hello everybody, two questions regarding carp and dhcp, one running the firewall as a dhcp client, and one running as server.
I want to provide dhcp from the firewall. Therefore I did setup the dhcp server on both hosts of the cluster. The firewall is configured as master/backup mode. The backup host has a advskew of 20 configured, and on both hosts, net.inet.carp.preempt=1. Both hosts run a snapshot version, from about the time, when OpenBSD 4.4 was branched. The carp interface sits on top of a vlan interface. When I start the dhcpd listening on the vlan interface, then the carp interface on top goes into Master mode, the others stay in backup mode. First, I wonder, whether it is right that the carp on top of a, I guess because of using the bpf on the vlan interface below, goes to master state when the dhcpd starts listening on it. Second, I wonder, why due to net.inet.carp.preempt=1 one interface can be in BACKUP state, and the rest in MASTER state. My second question, is retrieving the IP address of a carp interface via DHCP. right now I've multiple static aliases defined on the external carp interface of my firewall. My ISP wants to switch to DHCP with indefinite lease time. As far as I know, carp and dhcp do not work together? Second, I've no idea, how these guys want to assign multiple IP addresses to the same MAC address via DHCP? Don't know whether there are some DHCP options to hand out multiple addresses to a DHCP request on the server side, but would the client be able to handle that? I think I could setup ifstated, and when the carp interfaces on one box become master, I start the dhcpd on the one vlan interface, and maybe the dhclient on the external interface. Any idea whether that would work? any suggestions appreciated cheers Sebastian
