Q re dhcpd.conf setup

[Gene Heskett]

On Wednesday 26 April 2006 11:37, Michal Jaegermann wrote:
>On Wed, Apr 26, 2006 at 10:05:15AM -0400, Gene Heskett wrote:
>> It was given an dhcp
>> address according to the logs on the firewall box, but apparently
>> not a gateway address.
>>
>> Should the dhcpd protocol have handled that?
>
>Yes, it should and it does.
>
>> It is not setup in the dhcpd.conf I'm using,
>
>In such case clients, obviously enough, are not getting that
>information too.
>
>Look at 'man dhcpd.conf' and there is an example there which starts
>with:
>
>      subnet 10.0.0.0 netmask 255.255.255.0 {
>         option routers 10.0.0.254;  <--- this is your gateway address

Humm, I had that set for 192.168.1.1, which is the address of my router, 
which is on a different subnet from the rest of the house.

When I set dhcpd.conf up, it absolutely had to know all the bloody 
details of both network cards in that box before it would even start 
the daemon, and I would have assumed, since there is only one card on 
the local side of this dhcp server, that info on that card only would 
have been sufficient to make it work.  The other card only comes into 
play, going out toward the internet, when a request is forwarded out by 
iptables.

My normal path is gateway 192.168.xx.1 for all local machines, with 
iptables sending stuff on to 192.168.1.1 (the router, and it then 
functions in the gateway mode) and sends the data on out to the dsl 
modem and vice versa for return data if its from an established 
connection.

If this is set correctly for the NIC on the local network address, can I 
then do away with all the data for the subnet the router is on?  It 
sure seems like I should be able to, it has no need of any knowledge of 
the outside path on the other side of iptables.

And I asked this list because the firewall is a rh7.3 box yet, running a 
2.4.30 kernel, but its still rh7.3...  I'd say thats legacy for 
sure. :)

At any rate, I've now changed that in the sections for both cards and 
I'll see it it works if I take the GATEWAY statement out of the lappies 
ifcfg-wlan0 file.

>      ......
>
>Name servers and ntpd servers and various others things can be
>specified there too.
>
>It is true that dhcpd documentation could be really better, and one
>often has to rely on various examples to figure our how to set up
>things, but this has nothing to do with legacy issues so this looks
>like a really wrong list for questions of that sort.

[...]

-- 
Cheers, Gene
People having trouble with vz bouncing email to me should add the word
'online' between the 'verizon', and the dot which bypasses vz's
stupid bounce rules.  I do use spamassassin too. :-)
Yahoo.com and AOL/TW attorneys please note, additions to the above
message by Gene Heskett are:
Copyright 2006 by Maurice Eugene Heskett, all rights reserved.