Maybe this is a lot more straightforward than I am thinking, but I'm not sure how I should configure DHCP, once I start using DHCP helper.<br><br>Let me try and explain the setup. Each embedded device has 2 physical NIC cards. Eth0 and Eth1. Eth0 is used for public communincations and the VPN tunnels are setup between the two devices eth0 interfaces. Eth1 had multiple virtual adapters to handle the subnetting, ie. eth1:1...eth1:n depending on the number of required subnets.<br>
<br>Now when configuring DNSMasq I had run into an oddity. The machines absolutely should not provide DHCP over eth0 as that would impact the public network. Initially I configured dnsmasq to explicitly listen on all eth1.x interfaces, but it didn't work. However, when I configured dnsmasq to only exclude eth0 everything worked fine.<br>
<br>Here is the crux of the problem using dhcp_helper. So device 1 is providing DHCP/DNS. I need to assign a different subnet for nodes on device 2 than for device 1, so that routing can occur over the tunnels. Obviously each side of the vpn tunnels needs unique subnets. That is one problem, although I know dnsmasq can serve up addresses in multiple ranges. The real problem I suspect is that requests from nodes on device two, sent over broadcast will probably be received physically on eth0. ALthough their is in fact a "tunnel" device as well. (btw using GRE tunnels for the VPN - not encrypted as I am only concerned about network segregation not security) <br>
<br>Now I'm not really a good networking guy - so forgive me if my terminology is slightly off, but hopefully my problem is clear. And I am not really to clear on how to configure dnsmasq once I have DHCP helper working. I need those requests that come over the DHCP_Helper to get a different subnet. Any suggestions?<br>
<br>Cheers,<br>AK<br><br><div class="gmail_quote">On Thu, Jul 16, 2009 at 2:58 PM, Simon Kelley <span dir="ltr"><<a href="mailto:simon@thekelleys.org.uk">simon@thekelleys.org.uk</a>></span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div class="im">Anand Kameswaran wrote:<br>
> Simon,<br>
> The reason I initially discounted this, as my routers are essentially<br>
> embedded devices based off an old debian Sarge, and somewhat gimped. I did<br>
> not want to tackle trying to get additional packages installed, as the<br>
> system does not have aptitude, or even apt-get. However, following your<br>
> suggestion, I will try to get DHCP helper installed. This is more due to<br>
> implementation details rather than best practice. I am currently<br>
> unarchiving my old images of Sarge, and will try and get dhcp-helper<br>
> integrated into the embedded device. I suppose in worst case, I can build<br>
> out a sarge system and try to compile source against it, and move it into my<br>
> device.<br>
><br>
<br>
</div>Dhcp-helper is very simple: a few hundred lines of C on one source file.<br>
It only depends on the C library.<br>
<br>
There are packages in Sarge, which don't depend in anything other than<br>
libc, so dpkg should be enough to install them. In extremis you could<br>
compile it statically-linked on another machine and end up with a binary<br>
that would just slot in.<br>
<br>
Good luck.<br>
<br>
Cheers,<br>
<font color="#888888"><br>
Simon.<br>
<br>
<br>
</font></blockquote></div><br>