no DCHP on vlans

Started by slavkrav, January 08, 2024, 07:29:03 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
January 08, 2024, 07:29:03 AM Last Edit: January 08, 2024, 04:56:28 PM by slavkrav
Hey everyon, apologies if this is the wrong section or format. i have been looking for a solution sifting through the forums and google for the better part of the day. Everything was working well 2 days ago, last night moved my servers to a new rack and reconnected everything. same ports same configs. however after everything came back online, no devices on vlans are pickup IPs. i have looked through the logs and:

Code Select
2024-01-08T00:56:50-05:00 Informational dhcpd Sending on BPF/vtnet1_vlanxxx/xx:xx:xx:xx:xx:xx/xx.xx.xx.xx/24
2024-01-08T00:56:50-05:00 Informational dhcpd Listening on BPF/vtnet1_vlanxxx/xx:xx:xx:xx:xx:xx/xx.xx.xx.xx/24

ths loop is also exactly the same on the other vlans. i have checked the dhcpd serivce and its working correctly on the main network and seems to be up and running. on the vlans however its radio silence.

i have tried to recreate some of the vlans, connect with and without wifi, create a vm on the router to directly attach it to the vlan. im a bit at a loss as to what it could be. if anyone has some suggestions or can help out i'd greatly appreciate it.
January 08, 2024, 08:03:20 AM #1
Maybe the switches in the new rack have DHCP Snooping enabled and you are connected to an untrusted port?
Hardware:
DEC740
January 08, 2024, 08:20:55 AM #2 Last Edit: January 08, 2024, 08:23:48 AM by slavkrav
the switches are all the same, i moved all the hardware from one rack to another. the only thing changed is the rack it self.

the hardware is all the same. i fear the only thing that might of changed is i might of forgotten to write mem on the switch but i went through the ports and they all seem to have the same config. i can post the logs or settings but im at a complete loss as to whats going on or how to trouble shoot it.

edit:
i should also mention that before i moved everything i labled everything so all cables went back to thier respective ports.
January 08, 2024, 10:22:21 AM #3
You should check if the DHCP Discover Broadcast of a Client reaches the OPNsense through the VLAN.

Use wireshark or tcpdump on the DHCP Client and do the same with tcpdump on the VLAN of the OPNsense.

If the OPNsense receives the DHCP Discover Broadcast, and sends back a DHCP Offer, but the client doesn't receive the offer, there is something wrong on Layer 2, most likely the Switch configuration.
Hardware:
DEC740
January 08, 2024, 04:50:59 PM #4 Last Edit: January 08, 2024, 08:11:34 PM by slavkrav
i tried to exclude the switch as a variable i spun up a vm connected directly to the vlan network.

the vm doesnt connect to the network. why i know its an opnsense config is because that vm has the same connection issues as the rest being plugged in directly to the network. i also included the logs, maybe im just not seeing something...


i tried to ping the vlans from the lan ip and the packets seem to be going through.
January 08, 2024, 09:51:15 PM #5 Last Edit: January 08, 2024, 10:04:31 PM by slavkrav
tcpdump from opnsense for the vlan tested is blank, i have run it a few times and get 0 hits. tried to dump tcp and any.
tcpdump from test machine, cant find anything odd here. just seem like linux is trying to send a request on the network to get an ip.

Code Select
15:39:31.996466 IP6 user-Standard-PC-i440FX-PIIX-1996.mdns > ff02::fb.mdns: 0*- [0q] 2/0/0 (Cache flush) PTR user-Standard-PC-i440FX-PIIX-1996.local., (Cache flush) AAAA fe80::8645:8821:82f:277e (165)
15:39:32.273662 IP 0.0.0.0.bootpc > 255.255.255.255.bootps: BOOTP/DHCP, Request from 0e:1d:34:b3:c8:68 (oui Unknown), length 317
15:39:33.145654 IP6 user-Standard-PC-i440FX-PIIX-1996 > ip6-allrouters: ICMP6, router solicitation, length 8
15:39:35.216342 IP6 user-Standard-PC-i440FX-PIIX-1996.mdns > ff02::fb.mdns: 0 [9q] PTR (QM)? _nfs._tcp.local. PTR (QM)? _ipp._tcp.local. PTR (QM)? _ipps._tcp.local. PTR (QM)? _ftp._tcp.local. PTR (QM)? _webdav._tcp.local. PTR (QM)? _webdavs._tcp.local. PTR (QM)? _sftp-ssh._tcp.local. PTR (QM)? _smb._tcp.local. PTR (QM)? _afpovertcp._tcp.local. (141)
15:39:37.133284 IP 0.0.0.0.bootpc > 255.255.255.255.bootps: BOOTP/DHCP, Request from 0e:1d:34:b3:c8:68 (oui Unknown), length 317
15:39:41.110975 IP6 user-Standard-PC-i440FX-PIIX-1996 > ip6-allrouters: ICMP6, router solicitation, length 8
15:39:43.222148 IP6 user-Standard-PC-i440FX-PIIX-1996.mdns > ff02::fb.mdns: 0 [9q] PTR (QM)? _nfs._tcp.local. PTR (QM)? _ipp._tcp.local. PTR (QM)? _ipps._tcp.local. PTR (QM)? _ftp._tcp.local. PTR (QM)? _webdav._tcp.local. PTR (QM)? _webdavs._tcp.local. PTR (QM)? _sftp-ssh._tcp.local. PTR (QM)? _smb._tcp.local. PTR (QM)? _afpovertcp._tcp.local. (141)
15:39:45.728031 IP 0.0.0.0.bootpc > 255.255.255.255.bootps: BOOTP/DHCP, Request from 0e:1d:34:b3:c8:68 (oui Unknown), length 317
15:39:57.732669 IP6 user-Standard-PC-i440FX-PIIX-1996 > ip6-allrouters: ICMP6, router solicitation, length 8
15:39:59.238413 IP6 user-Standard-PC-i440FX-PIIX-1996.mdns > ff02::fb.mdns: 0 [9q] PTR (QM)? _nfs._tcp.local. PTR (QM)? _ipp._tcp.local. PTR (QM)? _ipps._tcp.local. PTR (QM)? _ftp._tcp.local. PTR (QM)? _webdav._tcp.local. PTR (QM)? _webdavs._tcp.local. PTR (QM)? _sftp-ssh._tcp.local. PTR (QM)? _smb._tcp.local. PTR (QM)? _afpovertcp._tcp.local. (141)
15:40:02.603696 IP 0.0.0.0.bootpc > 255.255.255.255.bootps: BOOTP/DHCP, Request from 0e:1d:34:b3:c8:68 (oui Unknown), length 317
15:40:13.107998 IP6 :: > ff02::16: HBH ICMP6, multicast listener report v2, 2 group record(s), length 48
15:40:13.112250 IP 0.0.0.0.bootpc > 255.255.255.255.bootps: BOOTP/DHCP, Request from 0e:1d:34:b3:c8:68 (oui Unknown), length 317
15:40:13.124180 IP6 :: > ff02::16: HBH ICMP6, multicast listener report v2, 2 group record(s), length 48
15:40:13.623986 IP6 :: > ff02::16: HBH ICMP6, multicast listener report v2, 2 group record(s), length 48
15:40:14.103997 IP6 :: > ff02::1:ff2f:277e: ICMP6, neighbor solicitation, who has user-Standard-PC-i440FX-PIIX-1996, length 32
15:40:15.112379 IP 0.0.0.0.bootpc > 255.255.255.255.bootps: BOOTP/DHCP, Request from 0e:1d:34:b3:c8:68 (oui Unknown), length 317
15:40:15.131975 IP6 user-Standard-PC-i440FX-PIIX-1996 > ff02::16: HBH ICMP6, multicast listener report v2, 2 group record(s), length 48
15:40:15.245784 IP6 user-Standard-PC-i440FX-PIIX-1996 > ip6-allrouters: ICMP6, router solicitation, length 8
15:40:15.246237 IP6 user-Standard-PC-i440FX-PIIX-1996.mdns > ff02::fb.mdns: 0*- [0q] 2/0/0 (Cache flush) PTR user-Standard-PC-i440FX-PIIX-1996.local., (Cache flush) AAAA fe80::8645:8821:82f:277e (165)
15:40:15.607970 IP6 user-Standard-PC-i440FX-PIIX-1996 > ff02::16: HBH ICMP6, multicast listener report v2, 2 group record(s), length 48
15:40:16.213748 IP6 user-Standard-PC-i440FX-PIIX-1996.mdns > ff02::fb.mdns: 0 [9q] PTR (QM)? _nfs._tcp.local. PTR (QM)? _ipp._tcp.local. PTR (QM)? _ipps._tcp.local. PTR (QM)? _ftp._tcp.local. PTR (QM)? _webdav._tcp.local. PTR (QM)? _webdavs._tcp.local. PTR (QM)? _sftp-ssh._tcp.local. PTR (QM)? _smb._tcp.local. PTR (QM)? _afpovertcp._tcp.local. (141)
15:40:17.438442 IP6 user-Standard-PC-i440FX-PIIX-1996.mdns > ff02::fb.mdns: 0*- [0q] 2/0/0 (Cache flush) PTR user-Standard-PC-i440FX-PIIX-1996.local., (Cache flush) AAAA fe80::8645:8821:82f:277e (165)
15:40:17.835349 IP 0.0.0.0.bootpc > 255.255.255.255.bootps: BOOTP/DHCP, Request from 0e:1d:34:b3:c8:68 (oui Unknown), length 317
15:40:19.346686 IP6 user-Standard-PC-i440FX-PIIX-1996 > ip6-allrouters: ICMP6, router solicitation, length 8
15:40:20.216259 IP6 user-Standard-PC-i440FX-PIIX-1996.mdns > ff02::fb.mdns: 0 [9q] PTR (QM)? _nfs._tcp.local. PTR (QM)? _ipp._tcp.local. PTR (QM)? _ipps._tcp.local. PTR (QM)? _ftp._tcp.local. PTR (QM)? _webdav._tcp.local. PTR (QM)? _webdavs._tcp.local. PTR (QM)? _sftp-ssh._tcp.local. PTR (QM)? _smb._tcp.local. PTR (QM)? _afpovertcp._tcp.local. (141)
15:40:21.940759 IP 0.0.0.0.bootpc > 255.255.255.255.bootps: BOOTP/DHCP, Request from 0e:1d:34:b3:c8:68 (oui Unknown), length 317
15:40:27.665113 IP6 user-Standard-PC-i440FX-PIIX-1996 > ip6-allrouters: ICMP6, router solicitation, length 8
15:40:28.219491 IP6 user-Standard-PC-i440FX-PIIX-1996.mdns > ff02::fb.mdns: 0 [9q] PTR (QM)? _nfs._tcp.local. PTR (QM)? _ipp._tcp.local. PTR (QM)? _ipps._tcp.local. PTR (QM)? _ftp._tcp.local. PTR (QM)? _webdav._tcp.local. PTR (QM)? _webdavs._tcp.local. PTR (QM)? _sftp-ssh._tcp.local. PTR (QM)? _smb._tcp.local. PTR (QM)? _afpovertcp._tcp.local. (141)
15:40:30.681505 IP 0.0.0.0.bootpc > 255.255.255.255.bootps: BOOTP/DHCP, Request from 0e:1d:34:b3:c8:68 (oui Unknown), length 317
15:40:43.547770 IP6 user-Standard-PC-i440FX-PIIX-1996 > ip6-allrouters: ICMP6, router solicitation, length 8
15:40:44.235995 IP6 user-Standard-PC-i440FX-PIIX-1996.mdns > ff02::fb.mdns: 0 [9q] PTR (QM)? _nfs._tcp.local. PTR (QM)? _ipp._tcp.local. PTR (QM)? _ipps._tcp.local. PTR (QM)? _ftp._tcp.local. PTR (QM)? _webdav._tcp.local. PTR (QM)? _webdavs._tcp.local. PTR (QM)? _sftp-ssh._tcp.local. PTR (QM)? _smb._tcp.local. PTR (QM)? _afpovertcp._tcp.local. (141)
15:40:47.195051 IP 0.0.0.0.bootpc > 255.255.255.255.bootps: BOOTP/DHCP, Request from 0e:1d:34:b3:c8:68 (oui Unknown), length 317
15:40:58.108163 IP6 :: > ff02::16: HBH ICMP6, multicast listener report v2, 2 group record(s), length 48
15:40:58.120559 IP 0.0.0.0.bootpc > 255.255.255.255.bootps: BOOTP/DHCP, Request from 0e:1d:34:b3:c8:68 (oui Unknown), length 317
15:40:58.136129 IP6 :: > ff02::16: HBH ICMP6, multicast listener report v2, 2 group record(s), length 48
15:40:58.872163 IP6 :: > ff02::16: HBH ICMP6, multicast listener report v2, 2 group record(s), length 48
15:40:58.935964 IP6 :: > ff02::1:ff2f:277e: ICMP6, neighbor solicitation, who has user-Standard-PC-i440FX-PIIX-1996, length 32
15:40:59.960161 IP6 user-Standard-PC-i440FX-PIIX-1996 > ff02::16: HBH ICMP6, multicast listener report v2, 2 group record(s), length 48
15:41:00.056915 IP6 user-Standard-PC-i440FX-PIIX-1996 > ip6-allrouters: ICMP6, router solicitation, length 8
15:41:00.106677 IP6 user-Standard-PC-i440FX-PIIX-1996.mdns > ff02::fb.mdns: 0*- [0q] 2/0/0 (Cache flush) PTR user-Standard-PC-i440FX-PIIX-1996.local., (Cache flush) AAAA fe80::8645:8821:82f:277e (165)
15:41:00.120567 IP 0.0.0.0.bootpc > 255.255.255.255.bootps: BOOTP/DHCP, Request from 0e:1d:34:b3:c8:68 (oui Unknown), length 317
15:41:00.760145 IP6 user-Standard-PC-i440FX-PIIX-1996 > ff02::16: HBH ICMP6, multicast listener report v2, 2 group record(s), length 48
15:41:01.222427 IP6 user-Standard-PC-i440FX-PIIX-1996.mdns > ff02::fb.mdns: 0 [9q] PTR (QM)? _nfs._tcp.local. PTR (QM)? _ipp._tcp.local. PTR (QM)? _ipps._tcp.local. PTR (QM)? _ftp._tcp.local. PTR (QM)? _webdav._tcp.local. PTR (QM)? _webdavs._tcp.local. PTR (QM)? _sftp-ssh._tcp.local. PTR (QM)? _smb._tcp.local. PTR (QM)? _afpovertcp._tcp.local. (141)
15:41:02.137480 IP 0.0.0.0.bootpc > 255.255.255.255.bootps: BOOTP/DHCP, Request from 0e:1d:34:b3:c8:68 (oui Unknown), length 317
15:41:02.223874 IP6 user-Standard-PC-i440FX-PIIX-1996.mdns > ff02::fb.mdns: 0*- [0q] 2/0/0 (Cache flush) PTR user-Standard-PC-i440FX-PIIX-1996.local., (Cache flush) AAAA fe80::8645:8821:82f:277e (165)
15:41:03.988429 IP6 user-Standard-PC-i440FX-PIIX-1996 > ip6-allrouters: ICMP6, router solicitation, length 8
15:41:05.225693 IP6 user-Standard-PC-i440FX-PIIX-1996.mdns > ff02::fb.mdns: 0 [9q] PTR (QM)? _nfs._tcp.local. PTR (QM)? _ipp._tcp.local. PTR (QM)? _ipps._tcp.local. PTR (QM)? _ftp._tcp.local. PTR (QM)? _webdav._tcp.local. PTR (QM)? _webdavs._tcp.local. PTR (QM)? _sftp-ssh._tcp.local. PTR (QM)? _smb._tcp.local. PTR (QM)? _afpovertcp._tcp.local. (141)
15:41:06.337603 IP 0.0.0.0.bootpc > 255.255.255.255.bootps: BOOTP/DHCP, Request from 0e:1d:34:b3:c8:68 (oui Unknown), length 317
15:41:12.119481 IP6 user-Standard-PC-i440FX-PIIX-1996 > ip6-allrouters: ICMP6, router solicitation, length 8
15:41:13.229368 IP6 user-Standard-PC-i440FX-PIIX-1996.mdns > ff02::fb.mdns: 0 [9q] PTR (QM)? _nfs._tcp.local. PTR (QM)? _ipp._tcp.local. PTR (QM)? _ipps._tcp.local. PTR (QM)? _ftp._tcp.local. PTR (QM)? _webdav._tcp.local. PTR (QM)? _webdavs._tcp.local. PTR (QM)? _sftp-ssh._tcp.local. PTR (QM)? _smb._tcp.local. PTR (QM)? _afpovertcp._tcp.local. (141)
15:41:15.182351 IP 0.0.0.0.bootpc > 255.255.255.255.bootps: BOOTP/DHCP, Request from 0e:1d:34:b3:c8:68 (oui Unknown), length 317
15:41:28.129526 IP6 user-Standard-PC-i440FX-PIIX-1996 > ip6-allrouters: ICMP6, router solicitation, length 8
15:41:29.245950 IP6 user-Standard-PC-i440FX-PIIX-1996.mdns > ff02::fb.mdns: 0 [9q] PTR (QM)? _nfs._tcp.local. PTR (QM)? _ipp._tcp.local. PTR (QM)? _ipps._tcp.local. PTR (QM)? _ftp._tcp.local. PTR (QM)? _webdav._tcp.local. PTR (QM)? _webdavs._tcp.local. PTR (QM)? _sftp-ssh._tcp.local. PTR (QM)? _smb._tcp.local. PTR (QM)? _afpovertcp._tcp.local. (141)
15:41:31.491179 IP 0.0.0.0.bootpc > 255.255.255.255.bootps: BOOTP/DHCP, Request from 0e:1d:34:b3:c8:68 (oui Unknown), length 317
15:41:43.108022 IP6 :: > ff02::16: HBH ICMP6, multicast listener report v2, 2 group record(s), length 48
15:41:43.114573 IP 0.0.0.0.bootpc > 255.255.255.255.bootps: BOOTP/DHCP, Request from 0e:1d:34:b3:c8:68 (oui Unknown), length 317
15:41:43.123996 IP6 :: > ff02::16: HBH ICMP6, multicast listener report v2, 2 group record(s), length 48
15:41:43.480105 IP6 :: > ff02::16: HBH ICMP6, multicast listener report v2, 2 group record(s), length 48
15:41:43.896078 IP6 :: > ff02::1:ff2f:277e: ICMP6, neighbor solicitation, who has user-Standard-PC-i440FX-PIIX-1996, length 32
15:41:44.919995 IP6 user-Standard-PC-i440FX-PIIX-1996 > ff02::16: HBH ICMP6, multicast listener report v2, 2 group record(s), length 48
15:41:44.975718 IP6 user-Standard-PC-i440FX-PIIX-1996 > ip6-allrouters: ICMP6, router solicitation, length 8
15:41:45.114542 IP 0.0.0.0.bootpc > 255.255.255.255.bootps: BOOTP/DHCP, Request from 0e:1d:34:b3:c8:68 (oui Unknown), length 317
15:41:45.215891 IP6 user-Standard-PC-i440FX-PIIX-1996.mdns > ff02::fb.mdns: 0*- [0q] 2/0/0 (Cache flush) PTR user-Standard-PC-i440FX-PIIX-1996.local., (Cache flush) AAAA fe80::8645:8821:82f:277e (165)
15:41:45.368112 IP6 user-Standard-PC-i440FX-PIIX-1996 > ff02::16: HBH ICMP6, multicast listener report v2, 2 group record(s), length 48
15:41:46.217467 IP6 user-Standard-PC-i440FX-PIIX-1996.mdns > ff02::fb.mdns: 0 [9q] PTR (QM)? _nfs._tcp.local. PTR (QM)? _ipp._tcp.local. PTR (QM)? _ipps._tcp.local. PTR (QM)? _ftp._tcp.local. PTR (QM)? _webdav._tcp.local. PTR (QM)? _webdavs._tcp.local. PTR (QM)? _sftp-ssh._tcp.local. PTR (QM)? _smb._tcp.local. PTR (QM)? _afpovertcp._tcp.local. (141)
15:41:47.391116 IP6 user-Standard-PC-i440FX-PIIX-1996.mdns > ff02::fb.mdns: 0*- [0q] 2/0/0 (Cache flush) PTR user-Standard-PC-i440FX-PIIX-1996.local., (Cache flush) AAAA fe80::8645:8821:82f:277e (165)
15:41:48.044514 IP 0.0.0.0.bootpc > 255.255.255.255.bootps: BOOTP/DHCP, Request from 0e:1d:34:b3:c8:68 (oui Unknown), length 317
15:41:48.946556 IP6 user-Standard-PC-i440FX-PIIX-1996 > ip6-allrouters: ICMP6, router solicitation, length 8
15:41:50.220581 IP6 user-Standard-PC-i440FX-PIIX-1996.mdns > ff02::fb.mdns: 0 [9q] PTR (QM)? _nfs._tcp.local. PTR (QM)? _ipp._tcp.local. PTR (QM)? _ipps._tcp.local. PTR (QM)? _ftp._tcp.local. PTR (QM)? _webdav._tcp.local. PTR (QM)? _webdavs._tcp.local. PTR (QM)? _sftp-ssh._tcp.local. PTR (QM)? _smb._tcp.local. PTR (QM)? _afpovertcp._tcp.local. (141)
15:41:52.857952 IP 0.0.0.0.bootpc > 255.255.255.255.bootps: BOOTP/DHCP, Request from 0e:1d:34:b3:c8:68 (oui Unknown), length 317
15:41:56.840154 IP6 user-Standard-PC-i440FX-PIIX-1996 > ip6-allrouters: ICMP6, router solicitation, length 8
15:41:58.224061 IP6 user-Standard-PC-i440FX-PIIX-1996.mdns > ff02::fb.mdns: 0 [9q] PTR (QM)? _nfs._tcp.local. PTR (QM)? _ipp._tcp.local. PTR (QM)? _ipps._tcp.local. PTR (QM)? _ftp._tcp.local. PTR (QM)? _webdav._tcp.local. PTR (QM)? _webdavs._tcp.local. PTR (QM)? _sftp-ssh._tcp.local. PTR (QM)? _smb._tcp.local. PTR (QM)? _afpovertcp._tcp.local. (141)
15:42:00.867656 IP 0.0.0.0.bootpc > 255.255.255.255.bootps: BOOTP/DHCP, Request from 0e:1d:34:b3:c8:68 (oui Unknown), length 317
15:42:12.599542 IP6 user-Standard-PC-i440FX-PIIX-1996 > ip6-allrouters: ICMP6, router solicitation, length 8
15:42:14.240689 IP6 user-Standard-PC-i440FX-PIIX-1996.mdns > ff02::fb.mdns: 0 [9q] PTR (QM)? _nfs._tcp.local. PTR (QM)? _ipp._tcp.local. PTR (QM)? _ipps._tcp.local. PTR (QM)? _ftp._tcp.local. PTR (QM)? _webdav._tcp.local. PTR (QM)? _webdavs._tcp.local. PTR (QM)? _sftp-ssh._tcp.local. PTR (QM)? _smb._tcp.local. PTR (QM)? _afpovertcp._tcp.local. (141)
15:42:16.975496 IP 0.0.0.0.bootpc > 255.255.255.255.bootps: BOOTP/DHCP, Request from 0e:1d:34:b3:c8:68 (oui Unknown), length 317
15:42:28.107993 IP6 :: > ff02::16: HBH ICMP6, multicast listener report v2, 2 group record(s), length 48
15:42:28.168099 IP6 :: > ff02::16: HBH ICMP6, multicast listener report v2, 2 group record(s), length 48
January 10, 2024, 03:07:35 AM #6 Last Edit: January 10, 2024, 03:09:13 AM by slavkrav
i made some progress and narrowed it down to only UDP traffic being borked, i can send icmp across vlans but sadly still stuck. i wonder if anyone with a technical skills then i got can help me troubleshoot. i used mostly interface diagnostics to get to where i am based on Monviech's suggestions. thanks in advance.
January 10, 2024, 05:44:34 AM #7
Quote from: slavkrav on January 08, 2024, 08:20:55 AM
the switches are all the same, i moved all the hardware from one rack to another. the only thing changed is the rack it self.

Code Select
Arista-7050t-32(config-if-Et3)#show ip dhcp snooping
DHCP Snooping is disabled
Arista-7050t-32(config-if-Et3)#
 forgot to post this.
Print
Go Up Pages1
User actions