Re: [Kea-users] 1.4 - limit subnet to static reservations/leases

2019-02-20 Thread ѽ҉ᶬḳ℠ 

  
  

On 18/02/2019 16:16, ѽ҉ᶬḳ℠ wrote:


  
  
  On 14/02/2019 11:45, Tomek Mrugalski
wrote:
  
  
On 14.02.2019 09:14, ѽ҉ᶬḳ℠ wrote:


  being in the process of migrating from dnsmasq I have been looking for
an option in Kea to limit a particular subnet to static leases only,
something similar to dnsmasq's > dhcp-range=static <, but after having
perused the Kea admin documentation could not trace such?


So you want a subnet without any dynamic allocation, just serve the
clients that have reservations?

Simply don't define dynamic pools. That should do the trick.

Tomek


  
  
  I tried this various ways but none seems to be working.
  
  kea-dhcp4-server is running and listening either globally or on
  specified faces. According to the kea log there are no dhcp
  requests from clients on the subnet specified in the kea conf
  
  "subnet4": [
      {
      "subnet": "172.24.0.0/16", 
      "reservations": [
      {
      "hw-address": "00:16:3e:88:e8:4e",
      "ip-address": "172.24.41.10"
      }
      ]
      },
  
  However, the log is showing dhcp requests from clients in other subnets
that are not in the kea conf and that logically cannot be
  satisfied by kea:
  
  ERROR [kea-dhcp4.bad-packets/12145] DHCP4_PACKET_NAK_0001
[hwtype=1 00:16:3e:fc:25:3f],
cid=[ff:e0:55:d8:0c:00:02:00:00:ab:11:56:45:59:1d:16:60:db:75],
tid=0xac615c91: failed to select a subnet for incoming packet,
src 172.25.120.76, type DHCPREQUEST
  
  As soon as specifying the other subnets in the kea conf however no
  dhcp requests are logged either for those subnets.
  
  With dnsmasq running instead of kea, dnsmasq is of course stopped
  when running kea, there is no such issue and the clients are being
  assigned their static addresses as specified in the dnsmsaq conf.
  
  So either I am missing something here or this being rather some
  sort of bug in kea. Either way I did not imagine that a transition
  from dnsmasq to kea would bear such complications and I am rather
  inclined to throw in the towel and stay with dnsmasq instead.


It seems that kea is not ready for prime time yet and I am calling
it a day with kea for now.

All clients are lxc-containers and none is getting an address from
kea, whether dynamic or static, whilst there is no such issue with
dnsmasq. As mentioned previously kea is not even registering a dhcp
request from those clients.

With kea listening globally the log is showing:

[kea-dhcp4.dhcpsrv/28994] DHCPSRV_OPEN_SOCKET_FAIL failed to open
  socket: the interface vethDU6QB4 is down or has no usable IPv4
  addresses configured

dnsmasq has no such issue with bridge/veth interfaces.
  

___
Kea-users mailing list
Kea-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/kea-users

Re: [Kea-users] puppet & ldap to mysql

2019-02-20 Thread Kristof Van Doorsselaere 
Klaus,

I hoped someone developed a puppet module and wanted to share it, apparently not

>> Not sure what kind of info you're looking for, but in our case, because Salt 
>> supports data in YAML, we just generate subnet definitions in YAML and they 
>> merge automagically into the existing configuration.

That’s an option, I could use puppet to generate these yaml files, thanks for 
the info

Kristof Van Doorsselaere


From: Klaus Steden 
Date: Monday, 11 February 2019 at 08:01
To: Kristof Van Doorsselaere 
Cc: "kea-users@lists.isc.org" 
Subject: Re: [Kea-users] puppet & ldap to mysql


Hi Kristof,

We don't use Puppet, but we do use Salt to manage our Kea configurations. Our 
usage is fairly tightly defined, however, as our scope definitions are 
generated by an in-house IPAM application, so all the Salt state really does is 
ensure the necessary software is in place and the configuration files are kept 
up to date.

Not sure what kind of info you're looking for, but in our case, because Salt 
supports data in YAML, we just generate subnet definitions in YAML and they 
merge automagically into the existing configuration.

cheers,
Klaus

On Fri, Feb 8, 2019 at 2:43 AM Kristof Van Doorsselaere 
mailto:kristof.vandoorssela...@hogent.be>> 
wrote:
Dear Kea User list,

I was planning to move from isc dhcpd to kea dhcp next summer, and have 2 
questions:


1.  We are currently using openldap as a backend (mac addresses need to be 
registered in our company for wired access and are stored in openldap): I’m 
willing to move away from openldap to mysql, but I was wondering are there any 
known migration guides available for this?





2.  Is anyone using puppet to automate the kea configuration, can’t find an 
existing module on puppet forge


Thanks in Advance for your replies.

Kristof

___
Kea-users mailing list
Kea-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/kea-users
___
Kea-users mailing list
Kea-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/kea-users