Show Posts
1
23.7 Legacy Series / DHCP Relay via VPN Interface, interfaces without IP address not selectable
« on: October 19, 2023, 04:26:57 pm »
Hello,
I am trying to get a similar setup working like in https://forum.opnsense.org/index.php?topic=27814
I have to Firewalls connected via OpenVPN and have the dhcp relay running on one side and also got to the point where the DHCP response get routed back correctly via the VPN tunnel but then just get dropped.
Just like described in that topic I then started the dhcrelay manually and made it listen on the ovpnc1 interface by adding "-iu ovpnc1" and then everything worked just fine.
Currently interfaces without IP addresses, like tunnel interfaces, are not selectable but they seem to work just fine. So maybe they could be added to the list of selectable interfaces.
Also as dhcrelay can differentiate between upstream and downstream interfaces it would be nice to choose this in the interface.
I would be happy to contribute this change but this is my first time dabbling in OPNSense development and I am not sure if I am missing anything.
I would be happy for any feedback.
Regards
Nico
I am trying to get a similar setup working like in https://forum.opnsense.org/index.php?topic=27814
I have to Firewalls connected via OpenVPN and have the dhcp relay running on one side and also got to the point where the DHCP response get routed back correctly via the VPN tunnel but then just get dropped.
Just like described in that topic I then started the dhcrelay manually and made it listen on the ovpnc1 interface by adding "-iu ovpnc1" and then everything worked just fine.
Currently interfaces without IP addresses, like tunnel interfaces, are not selectable but they seem to work just fine. So maybe they could be added to the list of selectable interfaces.
Also as dhcrelay can differentiate between upstream and downstream interfaces it would be nice to choose this in the interface.
I would be happy to contribute this change but this is my first time dabbling in OPNSense development and I am not sure if I am missing anything.
I would be happy for any feedback.
Regards
Nico