On Tue, 12 Nov 2019 at 06:22, Samuel Sieb samuel@sieb.net wrote:
On 11/11/19 6:23 PM, Aaron Gray wrote:
On Mon, 11 Nov 2019 at 21:16, Samuel Sieb <samuel@sieb.net mailto:samuel@sieb.net> wrote:
On 11/11/19 10:57 AM, Aaron Gray wrote:
subnet 192.168.2.0 netmask 255.255.255.0 { authoritative;
range 192.168.2.1 192.168.2.127; option domain-name-servers 8.8.8.8, 8.8.4.4; option routers 192.168.1.111;
Your gateway address is not in this subnet. That won't work.
Okay that may well be the issue ! I cannot access stuff off of the internet so that figures !
So that should be 192.168.2.1 or 192.168.2.254 ?
I would need to know how your network is configured. Please explain.
192.168.1.111 is the gateway address of the router my DHCPD server machine is connected to.
That's a very unusual IP address for a gateway.
yep, a very nonstandard ISP proprietory router.
I tried using the this DHCPD server on Windows and it was fine and could access the internet for normal operation using the 192.168.1.111 address so thought I had a working configuration.
Again very strange. What IP address was Windows getting?
Yes Windows works to that gateway I would
How do I go about this will the DHCPD server pick up that gate way automattically use itself or do I have to do some further routing ??
Not sure what you're asking, but the gateway needs to be some network device on the same subnet that route the packets onward.
next-server 192.168.2.1;
Yes I was wondering about next-server ?
I'm really curious how it finds the tftp server without that...
Added 'next-server 192.168.2.1' and its now finding www.mirrorservice.org !!!
Okay TFTP does not seem to need next-server its the next server it uses after TFTP AFAICT.
I still don't understand the 192.168.1.111 address which is the gateway on the internet router (very nonstandard ISP proprietory router) that the enp4s4 ethernet that my BOOTP server connects to.
internet -> 192.168.1.0 router (with 192.168.1.111 gateway) -> enp4s4 (Fedora DHCPD server) enp5s5 -> booting client machine
Anyway I have it functioning now but if it is better to have another gateway address I would be interested in knowing how to do that.
At the moment I am MASQUERADE'ing from enp4s4 on 192.168.1.X to enp5s5 on 192.168.2.X :-
sudo route add -net 192.168.2.0/24 dev enp5s5 sudo bash -c "echo net.ipv4.ip_forward=1 >>/etc/sysctl.conf"
~~~ iptables ~~~ sudo iptables -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT sudo iptables -A FORWARD -i enp5s5 -p tcp --dport 443 -j ACCEPT sudo iptables -A FORWARD -i enp5s5 -p udp --dport 443 -j ACCEPT --comment "HTTP/3" sudo iptables -A FORWARD -i enp5s5 -p tcp --dport 53 -j ACCEPT sudo iptables -A FORWARD -i enp5s5 -p udp --dport 53 -j ACCEPT sudo iptables -A FORWARD -i enp5s5 -j REJECT sudo iptables -P FORWARD DROP sudo iptables -t nat -A POSTROUTING -s 192.168.2.0/24 -o enp4s0 -j MASQUERADE ~~~~~~~~
Cheers,
Aaron