Hi everyone,
I thought I would post this in case anyone else is having this issue, and
for future googlers. We have several WiSMs, and were experiencing problems
getting copies of the DHCP traffic to the PacketFence servers.
WiSMs have the frustrating behavior of, when setting up DHCP proxies, it
sends to the first one as a unicast, and if no response is received, it
sends to a second one. You cannot have more than 2. Obviously, this creates
a problem when trying to get PF to see your DHCP traffic.
So, I found this project: https://code.google.com/p/netmirror/
And I have it running on all of our DHCP servers, and also running on our
PF servers. The program takes a tcpdump filter (only dhcp sourced from the
WiSM interfaces on our various networks), and will forward a copy of the
traffic to a client (the PF boxes in my case), and the client can then do
various things with it. For example, you can have the client echo the data
back out an interface. Of course, you have to be careful, as this can
result in a loop if the server can see the traffic. So, I used the Linux
dummy0 interface, configured PF to be a dhcp-listener on it, and am having
netmirror echo out all packets to that interface. This works wonderfully,
even if it is a trifle convoluted.
I tried to use the pfarp_remote, but it ended up not working.
Hope this helps someone!
--
Fletcher Haynes <[email protected]>
Systems Administrator/Network Services Consultant
Willamette Integrated Technology Services
Willamette University, Salem, OR
Phone: 503.370.6016
------------------------------------------------------------------------------
See everything from the browser to the database with AppDynamics
Get end-to-end visibility with application monitoring from AppDynamics
Isolate bottlenecks and diagnose root cause in seconds.
Start your free trial of AppDynamics Pro today!
http://pubads.g.doubleclick.net/gampad/clk?id=48808831&iu=/4140/ostg.clktrk
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
