Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Strange DHCP related problem XG-7100

    Scheduled Pinned Locked Moved Official Netgate® Hardware
    13 Posts 2 Posters 985 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • R
      rvandam @stephenw10
      last edited by

      @stephenw10 thank you for the reply.

      The master modem is connected by ethernet, and gets an network address by dhcp from the Netgate. The clients connect over coax to the master. Once connected they use the Netgate dhcp server as well (transparent bridge). At this time the clients only connect to the master when the master is given a fixed ip address.

      On my test setup the master modem is connected directly to the Netgate router. The dhcp lease of the master is shown as offline and active immediately after assigned.

      The problem occurred after a short power outage. I switched from pc-pfsense to Netgate recently. I think they booted up correctly on the Pfsense and kept working after the router switch. After a short power outage the master modems booted new and then the problem occurred. It took me a few hour to find out, because there were weeks between the router switch and this problem.

      1 Reply Last reply Reply Quote 0
      • stephenw10S
        stephenw10 Netgate Administrator
        last edited by

        If it shows as off-line then it is not present in the ARP table, you can check that in Diag > ARP.

        If the modem is not requesting another lease or trying to renew does it still think it has the initial IP?

        Can we see the pcap of what the modem is sending?

        The XG-7100 has a built in switch that your previous device would not have. However it doesn't support STP.
        Unless you have added a bridge, which can be configured for STP, I would not expect STP to be present.
        Is it possible there's a loop somewhere? Do you have more that one connection to the Eth ports?

        Steve

        R 1 Reply Last reply Reply Quote 0
        • R
          rvandam @stephenw10
          last edited by rvandam

          @stephenw10 Here is the pcap file:
          CorinexNetgate.pcapng

          The Corinex gets ip 192.168.27.184

          Because the master modem is not reachable, I have to unplug/plug the power to reboot.

          Currently I have a test setup, and only WAN1, the Corinex master and a laptop are connected to the Netgate. I don't think there is a loop somewhere.

          The Corinex is indeed not in the ARP table.

          I have tried to add a switch which is (R)STP capable between the Corinex and the Netgate. But this makes no difference.

          I have tried to reach the Corinex over the old fixed ip address, but not able to connect.

          1 Reply Last reply Reply Quote 0
          • stephenw10S
            stephenw10 Netgate Administrator
            last edited by stephenw10

            Hmm, well that looks correct. And when you give it a fixed IP you are using the same address/subnet?

            Really the only thing that raises a flag for me there is that you're using .local for your domain and that can cause problems with mDNS. That wouldn't stop you accessing the modem though.

            I might have expected at least one part of that to come from the assigned IP. Hard to see how it could possibly not respond to ARP requests though. If you try to ping that IP from the firewall with a pcap running do you see ARP requests? Or responses?

            Steve

            R 1 Reply Last reply Reply Quote 0
            • R
              rvandam @stephenw10
              last edited by rvandam

              @stephenw10 Thank again for the reply

              When given a fixed ip I use the same subnet 192.168.24.13/255.255.252.0

              I did two captures. One when the Corinex is booted up on a old Draytek router (the modem is reachable then):
              CorinexDraytek.pcapng

              Second I did a ping from a connected laptop (makes no difference pinging from laptop or from Netgate webinterface):
              PingNetgate.pcapng

              Edit:
              When I do an arp -a immediately after a ping, I have this entry in the arp table:
              ? (192.168.27.184) at (incomplete) on lagg0.4091 expired [vlan]

              1 Reply Last reply Reply Quote 0
              • stephenw10S
                stephenw10 Netgate Administrator
                last edited by

                Is it possible something there is using the wrong subnet mask? Maybe it's hard coded to /24 somehow?

                It succeeds when you set a fixed IP inside the same /24 as pfSense. It succeeds whgen connected to a dhcp server that's handing out /24.

                Try setting the a static DHCP lease in pfSense so it gets an IP in the 192.168.24.X range when using dhcp. See if that then works.

                pfSense never sees any ARP replies from the modem so the table is incomplete.

                Steve

                R 1 Reply Last reply Reply Quote 0
                • R
                  rvandam @stephenw10
                  last edited by

                  @stephenw10 The dhcp also succeeds on the pc based Pfsense router, which has the same dhcp and ip config as the Netgate. The difference between the Pfsense and the Netgate is the internal switch configuration from the Netgate (LAGG etc.)

                  There is a lot of traffic on the Pfsense router, so I took an old Draytek router to get a good/clean capture. I can run a capture on the Pfsense if necessary.

                  1 Reply Last reply Reply Quote 0
                  • stephenw10S
                    stephenw10 Netgate Administrator
                    last edited by

                    More data can only help. Is there any way to get a console connection on the modem maybe? That would probably show you what's happening.

                    R 2 Replies Last reply Reply Quote 0
                    • R
                      rvandam @stephenw10
                      last edited by

                      @stephenw10 I did read the old manuals from the Corinex, and it should have a further undocumented rs485 port. I will look into it, but it can take a bit to figure out. I am really curious now what the problem is.

                      1 Reply Last reply Reply Quote 0
                      • R
                        rvandam @stephenw10
                        last edited by

                        @stephenw10 I finally found the problem!

                        I compared the DHCP offer packet field to field from the Pfsense and the Netgate. The only difference was in the DNS part. The Netgate had 4 dns servers, and the Pfsense 1.

                        I reduced the dns servers to 2, and now it works as it should.

                        Thank you for all the support.

                        1 Reply Last reply Reply Quote 0
                        • stephenw10S
                          stephenw10 Netgate Administrator
                          last edited by

                          Hmm, nice catch. Interesting.

                          1 Reply Last reply Reply Quote 0
                          • First post
                            Last post
                          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.