Topic: Local DHCP Problem on SME V5.5

[Martin]

My Local Network DHCP server has ceased operating after upgrading from ESSG 4.1.2 to SME 5.5 (Update 2).

SME Log reports: e-smith dhcpd: send_packet: Operation not permitted

Does any one know why the DHCP Daemon would report "Operation not Permitted"?

For those who like more information please see below:

After checking all of the configuration details repeatedly, disabling / re-enabling Local DHCP option, and various other things, I have drawn a big BLANK. A search of the wider Web has failed to come up with any concrete answers or suggestions.

This is what happens:
When a DHCP Client makes a request the following messages are logged in the "Messages" Log file.

Oct  2 22:37:35 e-smith dhcpd: DHCPREQUEST for 192.168.100.79 from 00:c0:ee:20:1c:93 via eth0
Oct  2 22:37:35 e-smith dhcpd: DHCPACK on 192.168.100.79 to 00:c0:ee:20:1c:93 via eth0
Oct  2 22:37:35 e-smith dhcpd: send_packet: Operation not permitted

My problem appears to be very similar to that noted in post:
http://forums.contribs.org/index.php?topic=5330.msg18814#msg18814

I have made some comparisons to a working system and have found I get a different response when typing "dhcpd" at the prompt on each system.

 Faulty System
[root@e-smith /]# dhcpd
Internet Software Consortium DHCP Server 2.0pl5
Copyright 1995, 1996, 1997, 1998, 1999 The Internet Software Consortium.
All rights reserved.

Please contribute if you find this software useful.
For info, please visit http://www.isc.org/dhcp-contrib.html

No subnet declaration for eth1 (203.xxx.xxx.xxx).  (xxx'd out to protect the innocent)
Please write a subnet declaration in your dhcpd.conf file for the
network segment to which interface eth1 is attached.
exiting.

#### Not sure why it is referencing only eth1 as this is the external interface which is running a fixed IP of 203.x.x.x. There is no mention of eth0 which should be running DHCP.


Good System
[root@hal1 init.d]# dhcpd
Internet Software Consortium DHCP Server 2.0pl5
Copyright 1995, 1996, 1997, 1998, 1999 The Internet Software Consortium.
All rights reserved.

Please contribute if you find this software useful.
For info, please visit http://www.isc.org/dhcp-contrib.html

Listening on Socket/eth0/192.168.1.0
Sending on   Socket/eth0/192.168.1.0
[root@hal1 init.d]# There's already a DHCP server running.
exiting.

#### This system is running PPPoE on eth1 and DHCP on internal interface eth0.

As far as I can tell there is no relevant differences in the dhcpd.conf files except for IP address ranges.

When the DHCP Daemon starts the following messages are logged in the "Messages" Log file on both working and non-working systems.

Oct  2 20:43:12 e-smith dhcpd: Starting dhcpd:
Oct  2 20:43:12 e-smith dhcpd: Internet Software Consortium DHCP Server 2.0pl5
Oct  2 20:43:12 e-smith dhcpd: Copyright 1995, 1996, 1997, 1998, 1999 The Internet Software Consortium.
Oct  2 20:43:12 e-smith dhcpd: All rights reserved.
Oct  2 20:43:12 e-smith dhcpd:
Oct  2 20:43:12 e-smith dhcpd: Please contribute if you find this software useful.
Oct  2 20:43:12 e-smith dhcpd: For info, please visit http://www.isc.org/dhcp-contrib.html
Oct  2 20:43:12 e-smith dhcpd:
Oct  2 20:43:12 e-smith dhcpd: Internet Software Consortium DHCP Server 2.0pl5
Oct  2 20:43:12 e-smith dhcpd: Copyright 1995, 1996, 1997, 1998, 1999 The Internet Software Consortium.
Oct  2 20:43:12 e-smith dhcpd: All rights reserved.
Oct  2 20:43:12 e-smith dhcpd:
Oct  2 20:43:12 e-smith dhcpd: Please contribute if you find this software useful.
Oct  2 20:43:12 e-smith dhcpd: For info, please visit http://www.isc.org/dhcp-contrib.html
Oct  2 20:43:12 e-smith dhcpd:
Oct  2 20:43:12 e-smith dhcpd: Listening on Socket/eth0/192.168.100.0
Oct  2 20:43:12 e-smith dhcpd: Sending on   Socket/eth0/192.168.100.0
Oct  2 20:43:12 e-smith dhcpd: Listening on Socket/eth0/192.168.100.0
Oct  2 20:43:12 e-smith dhcpd: Sending on   Socket/eth0/192.168.100.0
Oct  2 20:43:12 e-smith dhcpd: dhcpd startup succeeded
Oct  2 20:43:12 e-smith dhcpd: ^[[60G
Oct  2 20:43:12 e-smith dhcpd:
Oct  2 20:43:12 e-smith rc: Starting dhcpd:  succeeded

So all seems to be okay, but it does not work.

On my working system I see the following messages in the log file when a successful DHCP request is processed:

Oct  6 12:15:48 hal1 dhcpd: DHCPDISCOVER from 00:20:ed:2c:27:76 via eth0
Oct  6 12:15:49 hal1 dhcpd: DHCPOFFER on 192.168.1.65 to 00:20:ed:2c:27:76 via eth0
Oct  6 12:15:49 hal1 dhcpd: DHCPREQUEST for 192.168.1.65 from 00:20:ed:2c:27:76 via eth0
Oct  6 12:15:49 hal1 dhcpd: DHCPACK on 192.168.1.65 to 00:20:ed:2c:27:76 via eth0
Oct  6 12:15:52 hal1 dhcpd: DHCPREQUEST for 192.168.1.65 from 00:20:ed:2c:27:76 via eth0
Oct  6 12:15:52 hal1 dhcpd: DHCPACK on 192.168.1.65 to 00:20:ed:2c:27:76 via eth0


I will appreciate any suggestions as to where to look for the cause of this very annoying problem.

MARTIN

[Martin]

I have managed to resolve my DHCP issue.

On my 4.1.2 install of ESSG I had applied Ritchie Logan's IPSec Pass Thru / Masq custom template to permit outgoing IPSec connections.
http://forums.contribs.org/index.php?topic=1855.msg6169#msg6169

I have no idea why this stopped DHCPd from working correctly on the internal network once upgraded to V5.5 but it did.

I have now removed the custom template and applied the modifications to enable IPSec Pass Thru as listed in the SME FAQ
http://www.e-smith.org/faq.php3#8q35

Hope the above helps someone in the future.

Martin