On 2021-08-08 11:52 +01, Jason McIntyre <[email protected]> wrote:
> On Sun, Aug 08, 2021 at 12:37:54PM +0200, Florian Obser wrote:
>> This implements ignoring of nameservers and / or routes in leases as
>> well as completely ignoring servers (you cannot block rogue DHCP servers
>> in pf because bpf sees packets before pf).
>>
>> Various people voiced the need for these features.
>> Tests, OKs?
>>
>> diff --git dhcpleased.conf.5 dhcpleased.conf.5
>> index 9e6846f899e..b856113bac1 100644
>> --- dhcpleased.conf.5
>> +++ dhcpleased.conf.5
>> @@ -57,6 +57,17 @@ A list of interfaces to overwrite defaults:
>> .Ic interface
>> options are as follows:
>> .Bl -tag -width Ds
>> +.It Ic ignore dns
>> +Ignore nameservers from leases on this interface.
>> +The default is to not ignore nameservers.
>> +.It Ic ignore routes
>> +Ignore routes from leases on this interface.
>> +The default is to not ignore routes.
>> +.It Ic ignore Ar server-ip
>> +Ignore leases from
>> +.Ar server-ip .
>> +This option can be listed multiple times.
>> +The default is to not ignore servers.
>
> hi.
>
> you probably want
>
> .It Ic ignore Ar server-ip ...
>
> then you can either remove the "multiple times" text to shorten the
> text block, or leave it in to be explicit.
That's actually not implemented, only this works (for now):
ignore 192.0.2.1
ignore 192.0.2.2
This is a syntax error:
ignore 192.0.2.1 192.0.2.2
I should probably implement
ignore { 192.0.2.1 192.0.2.2 }
>
> the diff reads fine.
>
> jmc
>
>> .It Ic send client id Ar client-id
>> Send the dhcp client identifier option with a value of
>> .Ar client-id .
>
--
I'm not entirely sure you are real.
