I'd like to be able to classify DHCP requests based on the interface
they come in on. I'd like to have a tag based on the interface name
(so, if the request came in over br0, I'd have a br0 tag to match on).
Is there any way of accomplishing this with dnsmasq currently? My
interfaces don't
One option here is to use iPXE ( http://www.ipxe.org/ ) to grab the
netboot files via HTTP (or some other protocol) instead of relying on
TFTP. There's some extra configuration work here, but serving up the
365KB iPXE image to clients via TFTP is a lot less work then serving up
the entire
Is there any way to get additonal debugging information out of dnsmasq?
I'm running into an issue where I'm seeing 'DHCPDISCOVER(eth0) X Y no
address available', but it's not particularly clear to me why this is
happening. Is there a way to log the contents of the DISCOVER packet?
I know I
. I can't tell if its
supposed to be logged in that case either.
On 2/11/2014 10:50 AM, Simon Kelley wrote:
On 11/02/14 15:12, Brian Rak wrote:
Is there any way to get additonal debugging information out of dnsmasq?
I'm running into an issue where I'm seeing 'DHCPDISCOVER(eth0) X Y
That's how you end up with an open DNS resolver, and unwittingly DDOS
other machines.
On 11/28/2013 10:52 PM, Don Muller wrote:
Wouldn't it be better to not define dnsmasq as the DNS resolver for the subnets
you don't want handle.
Sent from my iPad
Don Muller
On Nov 28, 2013, at 12:26 PM,
at the routers and firewalls.
Don
-Original Message-
From: Brian Rak [mailto:b...@gameservers.com]
Sent: Friday, November 29, 2013 9:45 AM
To: Don Muller; dnsmasq-discuss@lists.thekelleys.org.uk
Subject: Re: [Dnsmasq-discuss] Limit DNS queries to the local subnet
clients
That's how you end up
of
attack is at the perimeter and not someplace inside the network. For
internal networks don't set up dnsmasq as your DNS resolver and you
don't have to tell dnsmasq to not respond.
Sent from my iPad
Don Muller
On Nov 29, 2013, at 2:03 PM, Brian Rak b...@gameservers.com wrote:
Your initial answer
On 11/16/2013 10:01 AM, Simon Kelley wrote:
Also, is there any way to know when a tftp download starts vs.ends?
No, I don't think so.
You could always chainload iPXE, and use HTTP instead of TFTP. You'd be
able to use any server side language to do actions when a download
starts/ends.
We've recently undertaken a project to clean up our network, and lock
down all the open DNS resolvers. As you may know, these are very
frequently used for DDOS attacks: http://openresolverproject.org/ ,
http://www.team-cymru.org/Services/Resolvers/ .
I haven't been able to find any sort of
On 10/24/2013 12:28 PM, Simon Kelley wrote:
On 24/10/13 17:03, Brian Rak wrote:
We've recently undertaken a project to clean up our network, and lock
down all the open DNS resolvers. As you may know, these are very
frequently used for DDOS attacks: http://openresolverproject.org/ ,
http
On 10/24/2013 1:00 PM, Simon Kelley wrote:
On 24/10/13 17:46, Brian Rak wrote:
On 10/24/2013 12:28 PM, Simon Kelley wrote:
On 24/10/13 17:03, Brian Rak wrote:
We've recently undertaken a project to clean up our network, and lock
down all the open DNS resolvers. As you may know
which you said is not required), configure your router to
drop packets arriving on its external interface where the source
IP is within your internal network. This is called a reverse
route check.
On Thu, Oct 24, 2013 at 12:11 PM, Brian Rak b...@gameservers.com
mailto:b
I have a layer 2 vlan (all hosts in the same broadcast domain), that has
multiple subnets active on it. For example:
interface ve 906
ip address 10.0.5.113 255.255.255.248
ip address 10.0.6.105 255.255.255.248
I have a machine with this configuration:
br0 inet addr:10.0.6.110
I'm trying to set up a DHCP server so that on any request for a new
lease I can execute a script and have the script return an IP address
(and other information).
Is this something that is currently possible with dnsmasq? From reading
the man page, I can't tell if I will get this behaviour
://www.facebook.com/jay.imerman
On Wed, Oct 3, 2012 at 3:14 PM, Brian Rak b...@gameservers.com
mailto:b...@gameservers.com wrote:
I'm trying to set up a DHCP server so that on any request for a
new lease I can execute a script and have the script return an IP
address (and other
15 matches
Mail list logo