move lease file?

classic Classic list List threaded Threaded
8 messages Options
Reply | Threaded
Open this post in threaded view
|

move lease file?

Bernd Nachtigall
Hi,

I plan to setup a new DHCP hardware. (Configuration is not changed)
It is necessary to copy the old dhcpd.leases to the new server  to get an
noiseless move?

Tia

Bernd
_______________________________________________
dhcp-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/dhcp-users
Reply | Threaded
Open this post in threaded view
|

Re: move lease file?

Simon Hobson
Bernd Nachtigall <[hidden email]> wrote:

> I plan to setup a new DHCP hardware. (Configuration is not changed)
> It is necessary to copy the old dhcpd.leases to the new server  to get an
> noiseless move?

Yes, if you are replacing the DHCP server, then you should copy the leases file from the old server to it.

If you don't then you are starting up a new server which has no knowledge of "promises" made by it's predecessor.
While many clients will simply come to renew, ask for their previous address, and the server will then know about that client and IP - that won't happen for everything. So you are also likely to find clients (re)joining the network, the server will pick an address which it's own records say is free - then find that the address is in use. Depending on various factors (especially if the devices already using teh address has firewalled off pings*), you will either get leases flagged as abandoned (which then are effectively taken out of your free pool), or the client will be offered a duplicate address which it should then find for itself is already in use. You are also likely to see a certain amount of address churn.

_______________________________________________
dhcp-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/dhcp-users
Reply | Threaded
Open this post in threaded view
|

Re: move lease file?

Bernd Nachtigall
Am Dienstag, 7. Februar 2017, 10:08:15 CET schrieb Simon Hobson:
> Bernd Nachtigall <[hidden email]> wrote:
> > I plan to setup a new DHCP hardware. (Configuration is not changed)
> > It is necessary to copy the old dhcpd.leases to the new server  to get an
> > noiseless move?
>
> Yes, if you are replacing the DHCP server, then you should copy the leases
> file from the old server to it.

Thx,

done

is up and running :-)



_______________________________________________
dhcp-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/dhcp-users
Reply | Threaded
Open this post in threaded view
|

Re: move lease file?

Bob Harold

On Tue, Feb 7, 2017 at 5:35 AM, Bernd Nachtigall <[hidden email]> wrote:
Am Dienstag, 7. Februar 2017, 10:08:15 CET schrieb Simon Hobson:
> Bernd Nachtigall <[hidden email]> wrote:
> > I plan to setup a new DHCP hardware. (Configuration is not changed)
> > It is necessary to copy the old dhcpd.leases to the new server  to get an
> > noiseless move?
>
> Yes, if you are replacing the DHCP server, then you should copy the leases
> file from the old server to it.

Thx,

done

is up and running :-)


Good!
 
Just for completeness - If you have a pair of DHCP servers with failover, then you can just move one server at a time and give it time to sync the leases file from the other server.

-- 
Bob Harold
 


_______________________________________________
dhcp-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/dhcp-users
Reply | Threaded
Open this post in threaded view
|

Re: move lease file?

Alexis Lameire
We have similar use case (update of DHCP server).

According to the DHCPD documentation, I strongly suggest you to not import leases files. When you see the manual, you have no guarenties that the lease file is consistent between two version.

In addition, when your leases are attributed, a precheck is made to verify if the ip is in use, if the ip is used it's marked as abandonned lease and never checked again. When you are near to the full usage of your pool, the abandonned leases are recheck and reallowed if ip is free of use. So you can migrate with an empty lease file.

Regards
Alexis Lameire

2017-02-07 15:41 GMT+01:00 Bob Harold <[hidden email]>:

On Tue, Feb 7, 2017 at 5:35 AM, Bernd Nachtigall <[hidden email]> wrote:
Am Dienstag, 7. Februar 2017, 10:08:15 CET schrieb Simon Hobson:
> Bernd Nachtigall <[hidden email]> wrote:
> > I plan to setup a new DHCP hardware. (Configuration is not changed)
> > It is necessary to copy the old dhcpd.leases to the new server  to get an
> > noiseless move?
>
> Yes, if you are replacing the DHCP server, then you should copy the leases
> file from the old server to it.

Thx,

done

is up and running :-)


Good!
 
Just for completeness - If you have a pair of DHCP servers with failover, then you can just move one server at a time and give it time to sync the leases file from the other server.

-- 
Bob Harold
 


_______________________________________________
dhcp-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/dhcp-users


_______________________________________________
dhcp-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/dhcp-users
Reply | Threaded
Open this post in threaded view
|

Re: move lease file?

Simon Hobson
Alexis Lameire <[hidden email]> wrote:

> According to the DHCPD documentation, I strongly suggest you to not import leases files. When you see the manual, you have no guarenties that the lease file is consistent between two version.

It may not be consistent between versions, but I would be "very surprised" indeed if the newer version could not read and convert the older format - it would prevent version upgrades !

> In addition, when your leases are attributed, a precheck is made to verify if the ip is in use, if the ip is used it's marked as abandonned lease and never checked again.

To start with, this "ping before offer" check is very unreliable - since (AIUI) at least Windows now defaults to firewalling pings - apparently some people still think blocking pings offers some sort of security :-/

> When you are near to the full usage of your pool, the abandonned leases are recheck and reallowed if ip is free of use.

Ah, but it does cause issues long before any leases are reclaimed. Recovery of abandoned leases is only does as a very last resort - so in effect, they permanently reduce the size of your pool until it is actually 100% full and a new lease is needed. Lets say that (for example) you have a pool of 100 addresses, and 75 roaming clients (ie not permanently on the network). Lets say that 50 addresses get abandoned. Your pool is now effectively only half the size and will remain that way until you need 51 active leases (at which point, ONE abandoned lease will be recovered). In the meantime, you will have a lot of churn as those 75 clients will share 50 addresses - so each time a client comes onto the network it will stand a good chance of getting a new address.

But with the full pool available, those 75 clients will get more or less static assignments.

This may or may not matter* - but it is not true that having abandoned leases has no effect.

> So you can migrate with an empty lease file.

As has already been said - you *can*, but it is not recommended if you can avoid it.

The effect in any network will depend on many factors. If you have a lot of (for example) Windows desktops then these are very "sticky" in asking for IP addresses (they will ask for the same address as they had before). If you have a lot of roaming users, then these tend to be very "not sticky" and will change address readily. Many modern clients (as mentioned, Windows is one of the culprits) firewall off pings - so that prevents ping-before-offer detecting conflicts before an address is offered.


* It is correct to suggest that if the client is dynamically addressed, then by definition it **shouldn't** matter. But I have come across many admins (especially those used to used to Windows environments) who rely on the "stickiness" of the client making it near enough a static assignment. And yes, I have seen cases where things have broken because a dynamically addressed client changed address.
Example: A customer was changing their IT provider because the public service contract got awarded to a new company who tool over the service and transferred It to their own systems. The new IT outfit were given all the details, but for some unfathomable reason decided that it would break things if they configured the same IP pool on their kit - so they configured a different but overlapping pool ! So a small number of clients changed address when they tried to renew and their previous address was no longer in the pool - but one of these was the PC running the access control system for the Gym because the card readers/door controls were trying to talk to the old address.
_______________________________________________
dhcp-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/dhcp-users
Reply | Threaded
Open this post in threaded view
|

please remove this email

Leandro
How can I be removed from the mail list ??
I already submit the remove request from the link but still receiving
this email.
Please help.
Leo.


On 07/02/17 14:21, Simon Hobson wrote:

> Alexis Lameire <[hidden email]> wrote:
>
>> According to the DHCPD documentation, I strongly suggest you to not import leases files. When you see the manual, you have no guarenties that the lease file is consistent between two version.
> It may not be consistent between versions, but I would be "very surprised" indeed if the newer version could not read and convert the older format - it would prevent version upgrades !
>
>> In addition, when your leases are attributed, a precheck is made to verify if the ip is in use, if the ip is used it's marked as abandonned lease and never checked again.
> To start with, this "ping before offer" check is very unreliable - since (AIUI) at least Windows now defaults to firewalling pings - apparently some people still think blocking pings offers some sort of security :-/
>
>> When you are near to the full usage of your pool, the abandonned leases are recheck and reallowed if ip is free of use.
> Ah, but it does cause issues long before any leases are reclaimed. Recovery of abandoned leases is only does as a very last resort - so in effect, they permanently reduce the size of your pool until it is actually 100% full and a new lease is needed. Lets say that (for example) you have a pool of 100 addresses, and 75 roaming clients (ie not permanently on the network). Lets say that 50 addresses get abandoned. Your pool is now effectively only half the size and will remain that way until you need 51 active leases (at which point, ONE abandoned lease will be recovered). In the meantime, you will have a lot of churn as those 75 clients will share 50 addresses - so each time a client comes onto the network it will stand a good chance of getting a new address.
>
> But with the full pool available, those 75 clients will get more or less static assignments.
>
> This may or may not matter* - but it is not true that having abandoned leases has no effect.
>
>> So you can migrate with an empty lease file.
> As has already been said - you *can*, but it is not recommended if you can avoid it.
>
> The effect in any network will depend on many factors. If you have a lot of (for example) Windows desktops then these are very "sticky" in asking for IP addresses (they will ask for the same address as they had before). If you have a lot of roaming users, then these tend to be very "not sticky" and will change address readily. Many modern clients (as mentioned, Windows is one of the culprits) firewall off pings - so that prevents ping-before-offer detecting conflicts before an address is offered.
>
>
> * It is correct to suggest that if the client is dynamically addressed, then by definition it **shouldn't** matter. But I have come across many admins (especially those used to used to Windows environments) who rely on the "stickiness" of the client making it near enough a static assignment. And yes, I have seen cases where things have broken because a dynamically addressed client changed address.
> Example: A customer was changing their IT provider because the public service contract got awarded to a new company who tool over the service and transferred It to their own systems. The new IT outfit were given all the details, but for some unfathomable reason decided that it would break things if they configured the same IP pool on their kit - so they configured a different but overlapping pool ! So a small number of clients changed address when they tried to renew and their previous address was no longer in the pool - but one of these was the PC running the access control system for the Gym because the card readers/door controls were trying to talk to the old address.
> _______________________________________________
> dhcp-users mailing list
> [hidden email]
> https://lists.isc.org/mailman/listinfo/dhcp-users

_______________________________________________
dhcp-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/dhcp-users
Reply | Threaded
Open this post in threaded view
|

Re: please remove this email

Simon Hobson

On 7 Feb 2017, at 19:38, Leandro <[hidden email]> wrote:

> How can I be removed from the mail list ??
> I already submit the remove request from the link but still receiving this email.

Did you unsubscribe the right email ?
Also, from memory, just clicking the link isn't enough - you have to click a button to unsubscribe.


PS - please do not hijack a thread like this. When you hit reply to an existing list message and just change the subject - there are headers which still link it to the thread, and so in the archives and many mail clients, your different thread ends up mingled into a completely unrelated thread.

_______________________________________________
dhcp-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/dhcp-users