On Thu, Jun 09, 2022 at 06:02:42PM -0400, B. Cook wrote: > I have a conf-file setting to include dhcp settings vs dnsmasq settings.. > > listen-address, user, group, logfacility, no-hosts, no-poll, no-resolv > (dnsmasq settings) > > then for dhcp settings.. > > dhcp-ignore=tag:!known > dhcp-authorative > dhcp-no-override > dhcp-generate-names > dhcp-fqdn > > (other global dhcp options) > dhcp-option=option:ntp-server,0.0.0.0 > dhcp-option=option:tzdb-timezone,"America/New_York" > dhcp-option=option:log-server,10.20.0.16 > dhcp-option=option:dns-server,10.20.0.43,10.20.32.100 > > then conf-file entries for defined ranges > > (for example) > conf-file=/etc/dnsmasq.d/dnsmasq.red.dhcp # 10.20.32/20 > conf-file=/etc/dnsmasq.d/dnsmasq.blue.dhcp # 10.20.16/20 > > dnsmasq.red.dhcp then defines global defaults for the red range.. > > domain=red.dns,10.20.0.0/20 > dhcp-range=red,10.20.12.1,10.20.14.254,255.255.240.0,4h > dhcp-option=red,option:router,10.20.0.1 # Gateway > dhcp-option=red,option:domain-name,red.dns # Domain > > dnsmasq.blue.dhcp defines options for the blue range.. > > domain=blue.dns,10.20.16.0/20 > dhcp-range=blue,10.20.28.1,10.20.30.254,255.255.240.0,4h > dhcp-option=blue,option:router,10.20.16.1 # Gateway > dhcp-option=blue,option:domain-name,blue.dns # Domain > > etc.. > > in each red, orange, yellow, green, blue, etc range (buildings) there > are hosts defined to allow dhcp.. because of the initial > dhcp-ignore=tag:!known definition at the top of the include.. > > Defining a host in red does not give them access to blue building, > etc.. all of this is fine and working; and if the above is clear below > is my problem to which I am looking for a possible solution.. > > We are adding a bunch of new Netgate devices at each building, > apparently pfsense 2.6.0 does not do dhcpd and dhcp-relay on the same > device it is one or the other.. > > Netgate 6100 fwiw, pfsense+ > DHCP Relay is currently enabled. DHCP Server canot be enabled while > the DHCP Relay is enabled on any interface. > > So just now hitting this wall; and the only (quick solution) pfsense > option is to dhcp-relay all vlans from buildings, red, orange, yellow, > etc.. so this main single dnsmasq with the dhcp-ignore=tag:!known > defined.. > > Is there a way to define another range and "dis-inherit" the !known tag? > > (for example) > conf-file=/etc/dnsmasq.d/dnsmasq.red.clear.dhcp # 10.120.36/24 > > domain=red-clear.dns,10.120.36.0/24 > dhcp-range=red-clear,10.120.36.100,10.120.36.200,255.255.240.0,4h > dhcp-option=red-clear,option:router,10.120.36.254 # Gateway > dhcp-option=red-clear,option:domain-name,red-clear.dns # Domain > > and then *not* have to manually assign each host I want to allow in this > range? > > Is that possible? } Is that possible with minimal effort by me? > > From the man page which talks about the --dhcp-ignore=tag:!known, I > cannot figure out how to 'undo it' for a range.. > > (as I have not defined it for red, orange, yellow, etc.. I cannot seem > to undefine or not define it for red-clear, orange-clear, etc.. ) > > Or is the answer to have a new entry: > > dhcp-ignore=red,orange,yellow,tag:!known > > Thank you in advance for taking the time to read this..
Acknowledge on "What is configured". Please add "What is wanted / What is desired" and "What is the actual result". See also https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2022q2/016423.html (monthly posting) Silence is hard to parse _______________________________________________ Dnsmasq-discuss mailing list Dnsmasq-discuss@lists.thekelleys.org.uk https://lists.thekelleys.org.uk/cgi-bin/mailman/listinfo/dnsmasq-discuss
