On 2008-05-30 01:08, Petter Reinholdtsen <[EMAIL PROTECTED]> wrote: >In Debian Edu, one of the few places where we have to hardcode an IP >address on the clients is in /etc/munin/munin-node.conf. This make it >harder to set up a Debian Edu client in a network when using another >subnet. > >To avoid this problem, it would be great if the 'allow' statement >accepted DNS names and host netgroups in addition to IP address >regexes. Or perhaps a new statement should be used, like allow_host, >to avoid changing the semantic of the existing keyword. Please also >add support for using host netgroups when deciding who to grant >access. Then we can move the configuration to the LDAP server and >grant access to all servers using one netgroup. > >Handling something like this would be great: > >allow munin-server-dns-name >allow @servernetgroup
The allow statements, and indeed all statements not used by munin-node itself, of which there are just a few, are sent as configuration to the Net::Server perl module. This is documented at http://search.cpan.org/dist/Net-Server/lib/Net/Server.pod The "allow" and "deny" take a regex as argument. If you also specify "reverse_lookups", you can match on hostname as well as IP address. In newer versions of Net::Server, you also have cidr_allow and cidr_deny, which may help. This may require additional perl modules installed. -- Stig Sandbeck Mathisen Fagleder Nettverk, Senior Systemadministrator Linpro AS - Ledende på Linux -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
