I’d like to start by commenting on how I really like VyOS and see great potential. I’d like to help the community as much as I can. VyOS has been the only router I’ve been able to get IGMP proxy working with my IPTV so I can get rid of the actiontec brick they force us to rent.
I’m currently seeing a very strange issue. The outside interface is adding 4 to the mac address and using that mac address to receive an IP address at lease renewal. I’ve seen this on both version 1.1.6 and 1.2beta1. I came to this conclusion because I’m fortunate enough to have a close friend that is the support engineer for the ISP.
What the ISP does is they have their equipment setup to not learn ARP entries. The DHCP server enters a manual ARP entry into the gateway device after you receive an address. You have a QnQ setup so that you only have a single address in a single VLAN and that is how they can restrict us to one IP address but hand it out of a /20.
The problem comes in during the DHCP renewal process. They hand out 4 hour leases and when that lease expires the VyOS router is renewing with a new mac address. It’s taking the hardware mac address and adding 4 to generate a new mac address.
Here is the list of interfaces, I have eth0 configured for my outside interface and the initial DHCP lease is given to 00:14:5e:1e:aa:bc
eth0 Link encap:Ethernet HWaddr 00:14:5e:1e:aa:bc
eth1 Link encap:Ethernet HWaddr 00:14:5e:1e:aa:bd
eth2 Link encap:Ethernet HWaddr 00:15:17:cc:f7:a9
eth3 Link encap:Ethernet HWaddr 00:15:17:cc:f7:a8
eth4 Link encap:Ethernet HWaddr 00:15:17:cc:f7:ab
eth5 Link encap:Ethernet HWaddr 00:15:17:cc:f7:aa
I ran the outside physical layer through a Cisco 3560x so I could help troubleshoot and monitor issues I was having. (Have you ever tried getting IPTV working? It’s a nightmare)
But after the lease expires and is renewed, it’s renewed with 00:14:5e:1e:aa:c0 and that arp entry is entered manually using the DHCP integration. Then my internet breaks, fire and brimstone, dogs and cats living together.
Vlan 5 is the outside network. The CPE is plugged into port Gi0/1 and the VyOS is plugged into Gi0/2. Here’s where I can see it’s coming from VyOS for some reason.
HOME-SWITCH#sh mac address-table
Mac Address Table
Vlan Mac Address Type Ports
Other mac addresses truncated
5 0002.5dac.814f DYNAMIC Gi0/1
5 0014.5e1e.aabc DYNAMIC Gi0/2
5 0014.5e1e.aac0 DYNAMIC Gi0/2
5 0ca4.0252.1d92 DYNAMIC Gi0/1
Total Mac Addresses for this criterion: 40
HOME-SWITCH#
I’m running this on a physical server Here are the spec’s on that server.
#Server hardware
System x3250 M3 -[4252AC1]
Intel® Xeon® CPU X3450 @ 2.67GHz (fam: 06, model: 1e, stepping: 05)
Memory: 4026416K/4182748K available (4043K kernel code, 594K rwdata, 1652K rodata, 976K init, 700K bss, 156332K reserved)
#Network Cards
0b:00.0 Ethernet controller: Intel Corporation 82574L Gigabit Network Connection
15:00.0 Ethernet controller: Intel Corporation 82574L Gigabit Network Connection
21:00.0 Ethernet controller: Intel Corporation 82571EB Gigabit Ethernet Controller (Copper) (rev 06)
21:00.1 Ethernet controller: Intel Corporation 82571EB Gigabit Ethernet Controller (Copper) (rev 06)
22:00.0 Ethernet controller: Intel Corporation 82571EB Gigabit Ethernet Controller (Copper) (rev 06)
22:00.1 Ethernet controller: Intel Corporation 82571EB Gigabit Ethernet Controller (Copper) (rev 06)
#Driver/Firmware version
#eth0-1
driver: e10001
version: 2.3.2-k
firmware-version: 2.0-0
bus-info: 0000:0b:00.0
#eth2-5
driver: e10001
version: 2.3.2-k
firmware-version: 5.10-2
bus-info: 0000:21:00.0
Am I missing something or is this a bug?