[strongSwan] why my can not get the ip from dhcp server
Martin Willi
martin at strongswan.org
Tue Oct 19 09:31:36 CEST 2010
Hi,
> I test it without the next-server configuration in dhcpd,
> and It make the client get the right virtual IP address.
OK, I pushed the patch.
> when I ping from client to server:
> ping 10.1.0.1 -I 10.1.0.122, ping can reach the server,
> but when I ping from client to DHCP Server: ping 10.1.0.111 -I
> 10.1.0.122 I found the ping packet on eth0(bind to IP 192.168.0.7
> which connect to client) but no ping packet on eth1(bind to IP
> 10.1.0.1 which connect to DHCP Server)
The server installs a route for the client automatically, i.e. knows
that 10.1.0.122 is not on the LAN. Other hosts on the LAN don't know
this, but you can fake ARP responses using the farp plugins (which seems
to be enabled).
Additionally, make sure you have a proper route for the LAN on the
server and have IP forwarding enabled
(echo 1 > /proc/sys/net/ipv4/ip_forward).
Regards
Martin
More information about the Users
mailing list