Advanced Features

classic Classic list List threaded Threaded
5 messages Options
Reply | Threaded
Open this post in threaded view
|

Advanced Features

Andrea Lenarduzzi
Hi, I'm setting a ISC-Dhcp server on Debian

This is part of /etc/dhcp/dhcpd.conf :

class "laptops" {
 match hardware;
}

subclass "laptops" MAC1;
subclass "laptops" MAC2;
subclass "laptops" MAC3

class "desktops" {
 match hardware;
}

subclasssubclass "desktops" MAC4;
subclass "desktops" MAC5;
subclass "desktops" MAC6;
subclass "desktops" MAC7;

class "mobile" {
 match hardware;
}

subclass "mobile" MAC8;

shared-network Mobile {
subnet xxx.xxx.xxx.0 netmask 255.255.255.0 {
pool {
    range xxxxxxxx xxxxxxx;
    allow members of "laptops";
    allow members of "desktops";
    allow members of "mobile";
#    deny members of "deny";
}
    option subnet-mask 255.255.255.0;
    option broadcast-address xxx.xxx.xxx.255;
    option routers xxxxxxxx;
    option domain-name-servers 208.67.222.222;
}
}

shared-network Cgil {

subnet yyyyyyyyy netmask 255.255.255.0 {
pool {
    range yyyyyyy yyyyyyyy;
    allow members of "laptops";
    allow members of "desktops";
    deny members of "mobile";
    deny members of "deny";
}
    option subnet-mask 255.255.255.0;
    option broadcast-address yyyyyyy.255;
    option routers yyyyyy.254;
    option domain-name-servers yyyyyyyyy;
    option ntp-servers yyyyyyyyyy;

}
}



Can I set subclass "name" MAC in DB and dhcpd.conf see details from db?

Can I mail me when new MAC of specific class ask an IP?

Thank you

Uzzi

_______________________________________________
dhcp-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/dhcp-users
Reply | Threaded
Open this post in threaded view
|

Re: Advanced Features

Sten Carlsen



subnet yyyyyyyyy netmask 255.255.255.0 {
pool {
    range yyyyyyy yyyyyyyy;
    allow members of "laptops";
    allow members of "desktops";
    deny members of "mobile";
    deny members of "deny";
}

Do be very careful when using allow AND deny in the same context. This is likely to produce results that are not what you might think they should be.


Sten
_______________________________________________
dhcp-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/dhcp-users
Reply | Threaded
Open this post in threaded view
|

Re: Advanced Features

perl-list
If memory serves, allow creates an implicit deny such that if you allow members of laptops and desktops all others are denied...  similarly, if you deny members of desktops, all others are allowed?  That's what I remember, anyway.



From: "Sten Carlsen" <[hidden email]>
To: "Users of ISC DHCP" <[hidden email]>
Sent: Friday, August 2, 2019 7:01:09 AM
Subject: Re: Advanced Features



subnet yyyyyyyyy netmask 255.255.255.0 {
pool {
    range yyyyyyy yyyyyyyy;
    allow members of "laptops";
    allow members of "desktops";
    deny members of "mobile";
    deny members of "deny";
}

Do be very careful when using allow AND deny in the same context. This is likely to produce results that are not what you might think they should be.


Sten
_______________________________________________
dhcp-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/dhcp-users


_______________________________________________
dhcp-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/dhcp-users
Reply | Threaded
Open this post in threaded view
|

Re: Advanced Features

Andrea Lenarduzzi

Ok, Thank you, I'v fixed adding only allow members of.

Can I set subclass "name" MAC in DB and dhcpd.conf see details from db?

Can I mail me when new MAC of specific class ask an IP?

Thank you

Uzzi

Il venerdì 2 agosto 2019, 15:41:59 CEST, perl-list <[hidden email]> ha scritto:


If memory serves, allow creates an implicit deny such that if you allow members of laptops and desktops all others are denied...  similarly, if you deny members of desktops, all others are allowed?  That's what I remember, anyway.



From: "Sten Carlsen" <[hidden email]>
To: "Users of ISC DHCP" <[hidden email]>
Sent: Friday, August 2, 2019 7:01:09 AM
Subject: Re: Advanced Features



subnet yyyyyyyyy netmask 255.255.255.0 {
pool {
    range yyyyyyy yyyyyyyy;
    allow members of "laptops";
    allow members of "desktops";
    deny members of "mobile";
    deny members of "deny";
}

Do be very careful when using allow AND deny in the same context. This is likely to produce results that are not what you might think they should be.


Sten
_______________________________________________
dhcp-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/dhcp-users

_______________________________________________
dhcp-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/dhcp-users

_______________________________________________
dhcp-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/dhcp-users
Reply | Threaded
Open this post in threaded view
|

Re: Advanced Features

perl-list
if by DB you mean mysql/postgres/mariadb or similar, then ISC DHCP doesn't support database integration though the new ISC project: Kea (their new DHCP server) does...

I don't think either of them support email integration, though I never had occasion to look into that...


From: "Andrea Lenarduzzi" <[hidden email]>
To: "Users of ISC DHCP" <[hidden email]>
Sent: Friday, August 2, 2019 10:40:49 AM
Subject: Re: Advanced Features

Ok, Thank you, I'v fixed adding only allow members of.

Can I set subclass "name" MAC in DB and dhcpd.conf see details from db?

Can I mail me when new MAC of specific class ask an IP?

Thank you

Uzzi

_______________________________________________
dhcp-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/dhcp-users