ExtremeCloud IQ- Site Engine & Extreme Management Center

  • 1.  Acl for dhcp packet forwarding.

    Posted 06-15-2017 16:56
    Does anyone have some pointers to creating a script that will forward DHCP packets to a EAC appliance in a layer 2 Network?


  • 2.  RE: Acl for dhcp packet forwarding.

    Posted 06-15-2017 17:04


  • 3.  RE: Acl for dhcp packet forwarding.

    Posted 06-15-2017 23:25
    Hello,

    You could run a link to eth2 and extend the VLAN to eth2 of the NAC and put the interface in listening mode.

    If NAC is in the name VLAN as the clients it should already be able to get see the DHCP request.

    Thanks
    -Ryan


  • 4.  RE: Acl for dhcp packet forwarding.

    Posted 06-16-2017 06:27
    Hi

    Thanks for the replies. The vlan is not routable so bootp doesn't work. The NAC is actually in a different building and different set of VLAN's.



  • 5.  RE: Acl for dhcp packet forwarding.

    Posted 06-17-2017 20:41
    Hello,

    Even though the NAC is in another building is there anyway to extend the VLAN to a separate NIC on the NAC? The NAC's additional NIC can act as a passive Network sniffer to sniff the broadcast request packets.

    Thanks
    -Ryan


  • 6.  RE: Acl for dhcp packet forwarding.

    Posted 06-19-2017 08:39
    Problem is, we have multiple VLAN's that don't route.


  • 7.  RE: Acl for dhcp packet forwarding.

    Posted 06-19-2017 10:14
    As long as it's possible to extend each VLAN to the NAC's 2nd NIC it can listen on multiple VLANs. You're basically extending the broadcast domain for each VLAN to include a listening only interface on the NAC that will see the DHCP requests as they are broadcast packets.

    Thanks
    -Ryan


  • 8.  RE: Acl for dhcp packet forwarding.

    Posted 06-19-2017 10:24
    Hi

    Thanks for the reply. So based on that, i could remove bootp off the core and simply extend all vlan's onto the NAC listening port?

    Regards


  • 9.  RE: Acl for dhcp packet forwarding.

    Posted 06-19-2017 10:30
    Correct,

    Run a cable from the core to NAC's Eth1 port.

    Then in NAC Manager click on the NAC --> Configuration Tab --> Click the "Edit" button under the interface Summary box



    Even if the client authenticates to another NAC in the Appliance group and the DHCP request is seen on this NAC there is NAC to NAC communication to resolve and populate the information accordingly.

    Thanks
    -Ryan