Check-Mac-Address
These scenarios show how the feature
check-mac-address works for DHCP server
Test Check MAC Address
Description
The check-mac-address option filters packets if there are differences between the MAC address found at the ethernet header and the MAC address found in the DHCP packet.
To check this option, you should send packets with these differences and enable this option and see if there are warnings in your logs.
Also, this test check the server’s behaviour in regular conditions.
Scenario
Step 1: Set the following configuration in DUT0:
set interfaces ethernet eth0 address 10.0.0.1/24 set service dhcp-server shared-network dhcp subnet 10.0.0.0/24 start 10.0.0.5 stop 10.0.0.5
Step 2: Run command system journal show | tail at DUT0 and check if output contains the following tokens:
DHCPDISCOVER from 10:00:00:00:00:02 via eth0Show output
Oct 10 07:28:04.404182 osdx OSDxCLI[21677]: User 'admin' added a new cfg line: 'set service dhcp-server shared-network dhcp subnet 10.0.0.0/24 start 10.0.0.5 stop 10.0.0.5'. Oct 10 07:28:04.492493 osdx kernel: 8021q: adding VLAN 0 to HW filter on device eth0 Oct 10 07:28:04.539062 osdx systemd[1]: Started "DHCP Server Service instance main". Oct 10 07:28:04.540894 osdx cfgd[1323]: [21677]Completed change to active configuration Oct 10 07:28:04.543468 osdx OSDxCLI[21677]: User 'admin' committed the configuration. Oct 10 07:28:04.544381 osdx dhcpd[24875]: Wrote 0 leases to leases file. Oct 10 07:28:04.600186 osdx OSDxCLI[21677]: User 'admin' left the configuration menu. Oct 10 07:28:04.620634 osdx dhcpd[24875]: Server starting service. Oct 10 07:28:04.728601 osdx OSDxCLI[21677]: User 'admin' executed a new command: 'system journal show | tail'. Oct 10 07:28:05.653390 osdx dhcpd[24875]: DHCPDISCOVER from 10:00:00:00:00:02 via eth0
Step 3: Set the following configuration in DUT0:
set service dhcp-server check-mac-address
Step 4: Run command system journal clear at DUT0.
Step 5: Run command system journal show | tail at DUT0 and check if output does not contain the following tokens:
DHCPDISCOVER from 10:00:00:00:00:02 via eth0Show output
-- Logs begin at Thu 2024-10-10 07:28:06 UTC, end at Thu 2024-10-10 07:28:06 UTC. -- Oct 10 07:28:06.287568 osdx systemd-journald[1707]: Runtime journal (/run/log/journal/0478719b9ca24dfc881db6c3460ca916) is 2.0M, max 16.0M, 14.0M free. Oct 10 07:28:06.310451 osdx OSDxCLI[21677]: User 'admin' executed a new command: 'system journal clear'.
Step 6: Run command system journal show | tail at DUT0 and check if output contains the following tokens:
MAC received in DHCP packet (10:00:00:00:00:02) is different than source MAC in ethernet header (10:00:00:00:00:01)Show output
-- Logs begin at Thu 2024-10-10 07:28:06 UTC, end at Thu 2024-10-10 07:28:06 UTC. -- Oct 10 07:28:06.287568 osdx systemd-journald[1707]: Runtime journal (/run/log/journal/0478719b9ca24dfc881db6c3460ca916) is 2.0M, max 16.0M, 14.0M free. Oct 10 07:28:06.310451 osdx OSDxCLI[21677]: User 'admin' executed a new command: 'system journal clear'. Oct 10 07:28:06.368857 osdx OSDxCLI[21677]: User 'admin' executed a new command: 'system journal show | tail'. Oct 10 07:28:06.477744 osdx OSDxCLI[21677]: User 'admin' executed a new command: 'system journal show | tail'. Oct 10 07:28:06.693581 osdx dhcpd[24917]: MAC received in DHCP packet (10:00:00:00:00:02) is different than source MAC in ethernet header (10:00:00:00:00:01)
Step 7: Set the following configuration in DUT1:
set interfaces eth0 mac 10:00:00:00:00:05
Step 8: Set the following configuration in DUT1:
set interfaces eth0 address dhcp
Step 9: Run command interfaces ethernet eth0 show at DUT1 and check if output contains the following tokens:
10.0.0.5Show output
----------------------------------------------------------------- Name IP Address Admin Oper Vrf Description ----------------------------------------------------------------- eth0 10.0.0.5/24 up up fe80::dcad:beff:feef:6c20/64
Step 10: Run command service dhcp-server show leases main | grep 10.0.0.5 at DUT0 and check if output contains the following tokens:
10:00:00:00:00:05Show output
10.0.0.5 10:00:00:00:00:05 2024/10/10 07:28:09 2024/10/10 19:28:09 2024/10/10 07:28:09
Test Check MAC Address VRF
Description
This scenario configures a DHCP server with VRF instead of regular interfaces and checks the option check-mac-address.
To check this option you will need to send packets with differences in Source MAC for link layer and the client MAC from the application layer.
Scenario
Step 1: Set the following configuration in DUT0:
set interfaces eth0 address 10.0.0.1/24 set interfaces eth0 vrf VRF0 set service dhcp-server shared-network dhcp local-vrf VRF0 set service dhcp-server shared-network dhcp subnet 10.0.0.0/24 start 10.0.0.5 stop 10.0.0.6 set system vrf VRF0
Step 2: Run command system journal show | tail at DUT0 and check if output contains the following tokens:
DHCPDISCOVER from 10:00:00:00:00:02 via eth0Show output
Oct 10 07:28:14.674246 osdx kernel: 8021q: adding VLAN 0 to HW filter on device eth0 Oct 10 07:28:14.698251 osdx kernel: 8021q: adding VLAN 0 to HW filter on device eth0 Oct 10 07:28:14.732739 osdx systemd[1]: Started "DHCP Server Service instance VRF0". Oct 10 07:28:14.734624 osdx cfgd[1323]: [21677]Completed change to active configuration Oct 10 07:28:14.737113 osdx OSDxCLI[21677]: User 'admin' committed the configuration. Oct 10 07:28:14.737892 osdx dhcpd[25203]: Wrote 0 leases to leases file. Oct 10 07:28:14.772707 osdx OSDxCLI[21677]: User 'admin' left the configuration menu. Oct 10 07:28:14.790484 osdx dhcpd[25203]: Server starting service. Oct 10 07:28:14.916189 osdx OSDxCLI[21677]: User 'admin' executed a new command: 'system journal show | tail'. Oct 10 07:28:15.394883 osdx dhcpd[25203]: DHCPDISCOVER from 10:00:00:00:00:02 via eth0
Step 3: Set the following configuration in DUT0:
set service dhcp-server check-mac-address
Step 4: Run command system journal clear at DUT0.
Step 5: Run command system journal show | tail at DUT0 and check if output does not contain the following tokens:
DHCPDISCOVER from 10:00:00:00:00:02 via eth0Show output
-- Logs begin at Thu 2024-10-10 07:28:16 UTC, end at Thu 2024-10-10 07:28:16 UTC. -- Oct 10 07:28:16.504648 osdx systemd-journald[1707]: Runtime journal (/run/log/journal/0478719b9ca24dfc881db6c3460ca916) is 2.0M, max 16.0M, 14.0M free. Oct 10 07:28:16.536459 osdx OSDxCLI[21677]: User 'admin' executed a new command: 'system journal clear'.
Step 6: Run command system journal show | tail at DUT0 and check if output contains the following tokens:
MAC received in DHCP packet (10:00:00:00:00:02) is different than source MAC in ethernet header (10:00:00:00:00:01)Show output
-- Logs begin at Thu 2024-10-10 07:28:16 UTC, end at Thu 2024-10-10 07:28:17 UTC. -- Oct 10 07:28:16.504648 osdx systemd-journald[1707]: Runtime journal (/run/log/journal/0478719b9ca24dfc881db6c3460ca916) is 2.0M, max 16.0M, 14.0M free. Oct 10 07:28:16.536459 osdx OSDxCLI[21677]: User 'admin' executed a new command: 'system journal clear'. Oct 10 07:28:16.603535 osdx OSDxCLI[21677]: User 'admin' executed a new command: 'system journal show | tail'. Oct 10 07:28:16.703746 osdx OSDxCLI[21677]: User 'admin' executed a new command: 'system journal show | tail'. Oct 10 07:28:17.490955 osdx dhcpd[25245]: MAC received in DHCP packet (10:00:00:00:00:02) is different than source MAC in ethernet header (10:00:00:00:00:01)
Step 7: Set the following configuration in DUT1:
set interfaces eth0 mac 10:00:00:00:00:05
Step 8: Set the following configuration in DUT1:
set interfaces eth0 address dhcp
Step 9: Run command interfaces ethernet eth0 show at DUT1 and check if output contains the following tokens:
10.0.0.5Show output
----------------------------------------------------------------- Name IP Address Admin Oper Vrf Description ----------------------------------------------------------------- eth0 10.0.0.5/24 up up fe80::dcad:beff:feef:6c20/64
Step 10: Run command service dhcp-server show leases VRF0 | grep 10.0.0.5 at DUT0 and check if output contains the following tokens:
10:00:00:00:00:05Show output
10.0.0.5 10:00:00:00:00:05 2024/10/10 07:28:19 2024/10/10 19:28:19 2024/10/10 07:28:19