Results 1 to 5 of 5
  1. #1
    Master Untangler
    Join Date
    Dec 2008
    Location
    Greater Omaha Area
    Posts
    253

    Default Multiple DHCP Issues

    I am running a clean install of Untangle 9.3.2 with 5 LAN's, specifically External, Internal (192.168.1.1 / 24), DMZ (192.168.2.1 / 24), eth3 (192.168.3.1 / 24) and eth4 (192.168.4.1 / 24). I have left DHCP and DNS enabled, enabled DHCP and DNS under Advanced and added the following:

    dhcp-range=192.168.2.100,192.168.2.200,14400
    dhcp-range=192.168.3.100,192.168.3.200,14400
    dhcp-range=192.168.4.100,192.168.4.200,14400

    Under System Packet Filter Rules, I have unchecked "Block all DHCP Requests to the local DHCP Server", unchecked "Allow DHCP Requests from the DMZ interface", unchecked "Allow DHCP Requests from the internal interface." and checked "Accept DNS traffic to the local DNS Server from all interfaces."

    In the Firewall, I have created the following rules, in this order:

    Action: Pass; Protocol: UDP, Destination Port: 67, Source Interface: DMZ, Interface 3 and Interface 4.
    Action: Drop, Protocol: UDP, Destination Port: 67, Source Interface: Internal.
    Action: Drop, Destination Port: 53, Source Interface: External.

    I have tested with my laptop each Interface, specifically Internal, DMZ, eth3 and eth4 using both a cross over cable and a patch cable (which should not work without a switch) and I do not get the expected results, which is no DHCP on Internal and DHCP (with DNS) on DMZ, eth3 and eth4. Any ideas??

  2. #2
    Untangle Ninja sky-knight's Avatar
    Join Date
    Apr 2008
    Location
    Phoenix, AZ
    Posts
    26,024

    Default

    What version of Untangle are you using? You haven't been able to specify multiple source interfaces in a single rule in quite a while. If you do indeed have that rule as described, I suggest you break it up into multiple rules each with a singular source interface. I ask because you mentioned 9.3.2, and you can't make a rule like that in 9.3.2.
    Rob Sandling, BS:SWE, MCP
    NexgenAppliances.com
    Phone: 866-794-8879 x201
    Email: support@nexgenappliances.com

  3. #3
    Master Untangler
    Join Date
    Dec 2008
    Location
    Greater Omaha Area
    Posts
    253

    Default

    I downloaded the current ISO, specifically untangle_932_x32.iso, and burned a CD which I used to install. The Configuration, System Info, Version shows:

    Build: 9.3.2~svn20121030r33425release9.3-1lenny
    Kernel: 2.6.26-2-untangle-686

    I have attached a copy of the rule as defined ...

  4. #4
    Untangle Ninja sky-knight's Avatar
    Join Date
    Apr 2008
    Location
    Phoenix, AZ
    Posts
    26,024

    Default

    Something is very wrong, because that isn't normal. Source Interface is limited to a single interface input, try removing all but a single interface on that rule and see if that one will start working.
    Rob Sandling, BS:SWE, MCP
    NexgenAppliances.com
    Phone: 866-794-8879 x201
    Email: support@nexgenappliances.com

  5. #5
    Master Untangler
    Join Date
    Dec 2008
    Location
    Greater Omaha Area
    Posts
    253

    Default

    Looked at this again, I had created Firewall rules but was supposed to create User Packet Filter Rules ... retested the process but this is still not working. I did some more digging and found ifconfig eth2, ifconfig eth3 and ifconfig eth4 did not show the static IP addresses defined. A restart resolved that and when retesting, everything appears to be working as expected ...

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

SEO by vBSEO 3.6.0 PL2