dhcpcd-discuss

Home Other Lists Thread Index Date Index Search
Thread Prev Thread Next Date Prev Date Next Thread Index Date Index

Re: Dynamic IPv6 Prefix Delegation

Timo Rothenpieler

Wed Aug 06 19:29:55 2014
> And the relevant section from RFC3315
> 
> 15.11. Reconfigure Message
> 
>    Servers and relay agents MUST discard any received Reconfigure
>    messages.
> 
>    Clients MUST discard any Reconfigure messages that meets any of the
>    following conditions:
> 
>    -  the message does not include DHCP authentication:
> 
>       *  the message does not contain an authentication option.
> 
>       *  the message does not pass the authentication validation
>          performed by the client.
> 
> This is not optional, so you need to configure your Fritz! box and
> dhcpcd for authentication - any will do, even a simple token.
> See dhcpcd.conf(5) for how to configure dhcpcd.
> 
> Thanks
> 
> Roy
> 

Thanks for the fast reply!


After adding the following to my config:

authprotocol token
authtoken 1 fritz forever 1234567890

I get:

dhcpcd[4774]: enp2s0: DHCP messge too big
dhcpcd[4774]: enp2s0: authentication now required
dhcpcd[4774]: enp2s0: soliciting a DHCPv6 lease
dhcpcd[4774]: enp2s0: dhcp6_updateauth: No such process
dhcpcd[4774]: enp2s0: DHCP messge too big
dhcpcd[4774]: enp2s0: DHCP lease expired
dhcpcd[4774]: enp2s0: soliciting a DHCP lease
dhcpcd[4774]: enp2s0: DHCP messge too big
dhcpcd[4774]: enp2s0: DHCP messge too big
dhcpcd[4774]: enp2s0: DHCP messge too big
dhcpcd[4774]: timed out
dhcpcd[4774]: exited


With authprotocol delayed i get a bunch of:

dhcpcd[5315]: enp2s0: no authentication from 192.168.178.1
dhcpcd[5315]: enp2s0: no authentication from fe80::a96:d7ff:fe07:e6a
...
dhcpcd[5315]: timed out
dhcpcd[5315]: exited


There aren't a lot of examples about these options around the net(I
haven't found a single one), and i'm not sure if i simply used them
wrong, or the FritzBox.

The FritzBox is a proprietary closed source router, i can't configure
the DHCP server on it more than ticking a checkbox which enables or
disables IA_PD, so it's very possible it simply doesn't support
authentication.
Is there a way to just force dhcpcd to ignore the need for
authentication, like for example with the "noauthrequired" option?


Thanks,
Timo
Follow-Ups:
Re: Dynamic IPv6 Prefix DelegationRoy Marples
Re: Dynamic IPv6 Prefix DelegationRoy Marples
References:
Dynamic IPv6 Prefix DelegationTimo Rothenpieler
Re: Dynamic IPv6 Prefix DelegationRoy Marples
Archive administrator: postmaster@marples.name