[strongSwan-dev] 5.6.3 regression: dhcp integration appears to be broken
Harald Dunkel
harald.dunkel at aixigo.de
Wed Jun 6 12:14:08 CEST 2018
On 6/6/18 11:31 AM, Harald Dunkel wrote:
> Hi Tobias,
>
> If I omit the server address in dhcp.conf, then I get
>
> Jun 6 11:15:19 12[IKE] <IPSec-IKEv2|1> peer requested virtual IP %any
> Jun 6 11:15:19 12[CFG] <IPSec-IKEv2|1> sending DHCP DISCOVER to 255.255.255.255
> Jun 6 11:15:19 12[CFG] <IPSec-IKEv2|1> sending DHCP DISCOVER failed: Operation not permitted
> Jun 6 11:15:19 12[CFG] <IPSec-IKEv2|1> DHCP DISCOVER timed out
>
PS: If I keep the server address in dhcp.conf and use
bind-interfaces
except-interface=eth0
in dnsmasq.conf, then the port number conflict is gone, but dhcp is
still broken. Now I get
Jun 6 12:01:13 23[IKE] <IPSec-IKEv2|1> peer requested virtual IP %any
Jun 6 12:01:13 23[CFG] <IPSec-IKEv2|1> sending DHCP DISCOVER to 172.19.122.9
Jun 6 12:01:14 23[CFG] <IPSec-IKEv2|1> sending DHCP DISCOVER to 172.19.122.9
Jun 6 12:01:16 23[CFG] <IPSec-IKEv2|1> sending DHCP DISCOVER to 172.19.122.9
Jun 6 12:01:19 23[CFG] <IPSec-IKEv2|1> sending DHCP DISCOVER to 172.19.122.9
Jun 6 12:01:23 23[CFG] <IPSec-IKEv2|1> sending DHCP DISCOVER to 172.19.122.9
Jun 6 12:01:28 23[CFG] <IPSec-IKEv2|1> DHCP DISCOVER timed out
Regards
Harri
More information about the Dev
mailing list