to be replaced.
I’m curious if anyone else has noticed this behavior and if so has anyone
figured out a work around?
--
Munroe Sollog (He/Him/His)
Network Architect
mun...@lehigh.edu
--
ISC funds the development of this software with paid support subscriptions.
Contact us at https://www.isc.org/contact
le log message in your GitHub README.
>
> cheers,
> Klaus
>
> On Thu, Dec 9, 2021 at 10:20 PM Munroe Sollog wrote:
>
>> I finally found the time to dig into kea's code and dust off my very old
>> C++ knowledge. The result is this hook:
>>
>> https:
I finally found the time to dig into kea's code and dust off my very old
C++ knowledge. The result is this hook:
https://github.com/mroe1234/DHCPfingerprintHook
It adds a log line with the mac address and the specific option order a
client requested.
--
Munroe Sollog (He/Him/His)
Network
tation, the only object I have access to is
the isc::dhcp::Pkt4 object, which doesn't seem to have a method to expose
the buffer.
If anyone has some clarity on this I would appreciate it. Thanks.
--
Munroe Sollog (He/Him/His)
Network Architect
mun...@lehigh.edu
___
Is it possible to configure the forensic logging hook to output to syslog?
--
Munroe Sollog (He/Him/His)
Network Architect
mun...@lehigh.edu
___
ISC funds the development of this software with paid support subscriptions.
Contact us at https
ly there is some documentation that clarifies all this for me.
Thanks.
--
Munroe Sollog (He/Him/His)
Network Architect
mun...@lehigh.edu
___
ISC funds the development of this software with paid support subscriptions.
Contact us at https://www.isc.org/c
Yes, that is correct.
On Thu, Aug 22, 2019 at 11:54 AM Victoria Risk wrote:
> For fingerprinting, don’t you also need to know the order in which the
> options are requested?
>
> On Aug 22, 2019, at 5:10 AM, Munroe Sollog wrote:
>
> We currently use the dhcp options
We currently use the dhcp options a client requests to fingerprint the
device.
On Thu, Aug 22, 2019 at 7:54 AM Tomek Mrugalski wrote:
> On 22.08.2019 13:16, Munroe Sollog wrote:
> > Just a bump to see if any progress has been made in allowing servers
> > to log the options a
Just a bump to see if any progress has been made in allowing servers to log
the options a client requests.
On Mon, Dec 18, 2017 at 2:19 PM Munroe Sollog wrote:
> I'm looking http://kea.isc.org/docs/kea-messages.html#DHCP4 for which log
> line will log the 'request details'. I'm more than
We use clearpass for all network authentication, which has the option of
> blacklist mac addresses. Similar OpenSource like packetfence has the same
> featureset as ClearPass. More or less.
>
>
>
> Br,
>
> Thomas
>
>
>
> *From: *Munroe Sollog
> *Date: *Friday,
that behave properly should not be limited.
There has to be a way to give kea a list of MAC addresses to ignore.
On Fri, Mar 22, 2019 at 8:03 AM Francis Dupont wrote:
> Munroe Sollog writes:
> > Perhaps random wasn't a good choice of words. Given a MAC address we
> need
> >
entering the network, not when asking for DHCP.
>
>
>
>
>
>
>
> Br,
>
> Thomas
>
>
>
> *From: *Kea-users on behalf of Munroe
> Sollog
> *Date: *Friday, 22 March 2019 at 12.42
> *To: *Francis Dupont
> *Cc: *"KEA-Users (kea-users@lists.is
Perhaps random wasn't a good choice of words. Given a MAC address we need
a way of ensuring it does not DHCP. I'm open to alternatives to the
ignore/deny booting function. Some sort of client classification?
On Thu, Mar 21, 2019 at 7:43 PM Francis Dupont wrote:
> Munroe Sollog wri
4 address, IPv6 address/prefix,
options
--
Munroe Sollog
Senior Network Engineer
mun...@lehigh.edu
___
Kea-users mailing list
Kea-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/kea-users
Did this ever make it into the roadmap?
On Mon, Dec 4, 2017 at 4:24 PM Klaus Steden wrote:
>
> +1 to this request.
>
> cheers,
> Klaus
>
> On Mon, Dec 4, 2017 at 1:19 PM, Munroe Sollog wrote:
>
>> Has there been any discussion about using GET instead of POST fo
0 requests per
> >> second
> >>
> >> How can I get rid of these messages? Cause after getting this error,
> >> server sends NACK to client
> >> ___
> >> Kea-users mailing list
> >> Kea-users@lis
, Francis Dupont <fdup...@isc.org> wrote:
> Munroe Sollog writes:
> > I have this in our old dhcpd config file and I'd like to replicate
> > something like this in kea. Any idea how to do such a thing?
>
> => not yet (cf #5271: as it is a low priority MA ticket this mea
I have this in our old dhcpd config file and I'd like to replicate
something like this in kea. Any idea how to do such a thing?
--
Munroe Sollog
Senior Network Engineer
mun...@lehigh.edu
___
Kea-users mailing list
Kea-users@lists.isc.org
https
I’m happy to try to resolve my problem of sticky clients another way, I
just don’t see how.
On Thu, Dec 14, 2017 at 9:47 AM Francis Dupont <fdup...@isc.org> wrote:
> Munroe Sollog writes:
> > Actually Bind9 supports 'rescanning' for new IPs to listen on and HAProxy
> > supp
..@isc.org>
>
> PS: I am sure you'll get the same problem with bind9 for instance.
> ___
> Kea-users mailing list
> Kea-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/kea-users
>
>
--
Munroe Sollog
Senior Network
led to select interface: interface
'eth0' doesn't have address '172.31.0.1' assigned
(/etc/kea/kea-dhcp4.conf:18:41) (/etc/kea/kea-dhcp4.conf:18:5)
--
Munroe Sollog
Senior Network Engineer
mun...@lehigh.edu
___
Kea-users mailing list
Kea-users@lists.isc.
will also open a bug for this issue.
Thanks for the help.
On Wed, Dec 13, 2017 at 7:13 AM Tomek Mrugalski <tom...@isc.org> wrote:
> W dniu 12.12.2017 o 15:48, Munroe Sollog pisze:
> > Let me know if this should be a bug, but I have noticed some weird stats
> > when run
brought igor back from the negative.
All and all a very weird graph. With two servers handing out IPs for the
same subnet from the same database, how does the daemon track which one it
handed out vs which one the other server handed out?
--
Munroe Sollog
Senior Network Engineer
mun...@lehigh.edu
I was refering to 'xid'. So it sounds like it is expected for the same
client to use the same xid across different negotiations, which would
explain what I am seeing.
On Tue, Dec 12, 2017 at 8:23 AM, Tomek Mrugalski <tom...@isc.org> wrote:
> W dniu 11.12.2017 o 22:38, Munroe Sol
Can someone help me understand how kea is reporting a negative number for
assigned addresses?
"subnet[].assigned-addresses": [
[
-19,
"2017-12-12 08:16:56.390577"
]
--
Munroe Sollog
Senior Network Engine
Can someone help me understand how the tsid field is generated? What is
used to generate that hash? I’m tracking DHCP performance based on the
tsid and I’m seeing a very small percentage of long transaction time that
may be explained by colliding tsids.
Thanks.
--
Munroe Sollog
Senior Network
For anyone that is interested, I wrote a script that re-formats the
statistics output from the kea API into a telegraf-friendly format:
https://github.com/mroe1234/kea-telegraf-stats
I also bolted on a quick icinga/nagios status check to it.
--
Munroe Sollog
Senior Network Engineer
mun
plunk add-on to extract
> and parse the logs. Posting the URL in case anyone else needs this:
>
> https://github.com/inspired/TA-isc-kea-dhcp-server-add-on-
> for-splunk-enterprise
>
>
> 5. des. 2017 15:35 skrev "Munroe Sollog" <m...@lehigh.edu>:
>
>> I'm usi
DORA process in the logs, especially when troubleshooting a
problem.
Am I missing a configuration parameter that might restore some of this
functionality?
--
Munroe Sollog
Senior Network Engineer
mun...@lehigh.edu
___
Kea-users mailing list
Kea-
All -
Not sure if anyone is interested or if something like this already exists,
but I wrote a script to make it easy to migrate from a csv-backed kea to a
database-backed kea.
https://github.com/mroe1234/kea-importer
comments welcome of course.
--
Munroe Sollog
Senior Network Engineer
mun
n Thu, Nov 30, 2017 at 9:21 AM, Munroe Sollog <m...@lehigh.edu> wrote:
> I added a dummy interface on a dead-end subnet and enabled a pool for that
> subnet, still the same result.
>
> On Thu, Nov 30, 2017 at 9:07 AM, Munroe Sollog <m...@lehigh.edu> wrote:
>
>> I don'
I added a dummy interface on a dead-end subnet and enabled a pool for that
subnet, still the same result.
On Thu, Nov 30, 2017 at 9:07 AM, Munroe Sollog <m...@lehigh.edu> wrote:
> I don't want to add a pool because I really don't want it handing out any
> addresses at the moment.
>
b:1c:1d:1e:1f" } }'
http://localhost:8000/
[ { "result": 1, "text": "Invalid subnet-id: No IPv4 subnet with
subnet-id=1 currently configured." } ]
It says that subnet-id=1 doesn't exist? What am I missing?
--
Munroe Sollog
Senior Network Engineer
mun...@lehigh.edu
___
Kea-users mailing list
Kea-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/kea-users
;
> Also, see Kea User's Guide:
> https://jenkins.isc.org/job/Kea_doc/guide/kea-guide.html#lease-cmds
>
> Marcin Siodelski
> ISC
>
> On 29.11.2017 19:35, Munroe Sollog wrote:
> > Is there currently a way to add/remove active leases from the leases4|6
> > table using
Is there currently a way to add/remove active leases from the leases4|6
table using the API?
--
Munroe Sollog
Senior Network Engineer
mun...@lehigh.edu
___
Kea-users mailing list
Kea-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/kea-users
/
However with kea running port 8000 on localhost is not open. I purposely
have no subnets defined as it is a testing box and I don't want to hand out
any leases accidentally.
--
Munroe Sollog
Senior Network Engineer
mun...@lehigh.edu
___
Kea-users mailing
.org> wrote:
>>> >
>>> > Can you fill an entry in "Install Kea from sources" in the wiki
>>> > (http://kea.isc.org/wiki/Install)?
>>> >
>>> > Thanks
>>> >
>>> > Francis Dupont <fdup...@isc.org>
>>&g
I have a network that has two gateways that can act as a device’s default
gateway. Currently I am running kea on two different servers. Each server is
configured to hand out half of the network’s ip space (non-overlapping). Each
server has a different default gateway configured. This has
Non-technical question here. Can I get a quick idea of who is using kea and in
what size are your environments?
___
Kea-users mailing list
Kea-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/kea-users
list
> so if you could upload it somewhere.
>
> Or change logging severity to DEBUG with debug level 99 and see if there
> are additional logs.
>
> Regards,
> Włodek Wencel
>
> On 10/25/2016 11:13 PM, Munroe Sollog wrote:
>> below is my config. My leases file is ~
level": 0
},
]
}
}
On 10/25/2016 05:10 PM, Wlodek Wencel wrote:
> Hello,
> thanks for reporting that issue, I never came across this kind of
> problem. Is there a possibility that you could send us leases file and
> kea config file?
>
> Regards,
&
I'm running 1.0.0 and this morning I pulled subnet[1].assigned-addresses from
the control channel
and it reported -175 which don't really make sense to me. Can someone explain?
Thanks.
--
Munroe Sollog
LTS - Network Analyst
x85002
___
Kea-users
": "a4:17:31:f5:05:fc",
"ip-address": "172.31.63.250"
},
],
"option-data": [
{
"name": "domain-name-servers",
"da
an array. Is this meant to do exactly what I am trying to do? If
not, why would the
router option support an array?
Thanks.
--
Munroe Sollog
LTS - Network Analyst
x85002
___
Kea-users mailing list
Kea-users@lists.isc.org
https://lists.isc.org/mailman
server can 'fail' all of the clients over to the working gateway via lease
expiration.
- Munroe
On 07/27/2016 12:46 PM, Tomek Mrugalski wrote:
> On 27/07/16 17:03, Munroe Sollog wrote:
>> I am working on deploying a DHCP server with two declarations. They
>> will be servin
gateway becomes unavailable.
Does Kea currently support any sort of API that would allow me to achieve this?
I know that I could, through a script, edit the configuration and
reload/restart the daemon, but I
was wondering if there was a more elegant way.
Thanks
Munroe Sollog
Network Analyst
46 matches
Mail list logo
