dhcp config for 200 users via single file

AA Inter.Network Services / SYED JAHANZAiB aacable at hotmail.com
Sun Jan 13 07:29:59 UTC 2008 

Dear nick,
 
First many thanks for the reply, I really appreciate it. Sorry being asking dumb questions, I am totally new to linux networking world.
 
Now let me explain my setup to you in detail.
 
I am running internet cable.net setup in my town, provinding internet access to users via cat5e cable using normal switches. I am running my server using WIN2003 and ISA SERVER 2004 connected wid 4mb link. I am also running windows base DHCP server assiging users dynamic ips with default gateway and dns pointing to ISA SERVER. I am filtering users by there mac addressess using LINUX BRIDGE between SERVER and USERS , e.g   
 
LAN USERS  --->   BRIDGE wid allowed macs only  ----> SERVER
now I want to setup DHCP Server on LINUX Bridge, so only allowed mac address users should get the ip from the DHCP server, but every time he should get the fix ip address that I enter. its simple if there are few users only, But I have more then 200 users, so its difficult for me to enter 200+ entries manuallly in DHCP, even if if use WEBMIN bcoz i have to modify the mac addressess on daily basis. I want that there should be a single text file I have to edit like, e.g
/etc/macip.allowed
 
00-08-74-4D-74-DE   10.0.0.10    # john flat 303 sunview appartment
00-53-45-00-00-00   10.0.0.11    # david a43 aone banglows
 
and now the dhcp should read from the text file, and make automatic entries in dhcpd.conf file.
I also want that these entries should be firewalled by by iptables MAC TO IP MATCHING security. I have the script that can read from the file like above to match mac to ip binding and deny any user whoes mac and ip is not the same as enter in the macip.allowed file.
 
So plz help me howto setup DHCP to read from the file to issue specific ip for specific mac.
 
 
Regards, 

SYED JAHANZAIB
 


AA CABLE.NETWORK SERVICES

Web   :  http://www.aacablenet.org/mrtg
> Date: Sun, 13 Jan 2008 08:04:16 +1100> From: nicku at nicku.org> To: dhcp-users at isc.org> Subject: Re: dhcp config for 200 users via single file> Dear Syed,> I do not understand your problem completely; I am trying to clarify it> here.> On 12/01/08 20:24 +0000, AA Inter.Network Services / SYED JAHANZAiB wrote:> >I am running internet cable.net setup in my local area with around> >200+ users.> Is only one cable modem involved with these 200 users, or are there> 200 cable modems involved?> >I have created a linux birgde which only allow specific mac address> >/etc/mac.allowed to pass from the bridge to server ,I want that this> >Bridge should also act as a DHCP server too with MAC to IP> >MATCH.binding, so that only specific mac should get the specific ip> >address, and if the user tries to change the ip or mac, he should get> >DENY.> So you mean that the DHCP server should only provide a specific IP> address for any given MAC address and not respond to other requests?> Or do you mean that you want to firewall out any users who have> manually set their IP address?> If the first, fixed records could be generated from a file.> The second is much harder; if each user has their own cable modem, and> you are provisioning that cable modem, then you would use docsis to> authenticate the cable modem MAC addresses.> If there is only one cable modem shared between 200, then you can use> iptables or the like to restrict access to your range of fixed IP> addresses; I am not quite sure what your setup is.> >All other unknown clients shouldn't get any ip or some fake ip with> >fake gateway.> Easily achieved with fixed records. I made a system many years ago> that used an Excel spreadsheet shared out by Samba from the DHCP/name> server that would generate DHCP/name server records for the> address/MAC/name mappings in the spreadsheet. Details are at> http://nicku.org/snm/dhcp-dns-system/ (The code now makes me wince.)> >I have the MAC to IP binding script.> I'm not sure what this does.> >but how can i setup mac ip entry in a file and tell dhcp to pick> >entries from there and provide macs the fix ips. How can this be done> >in simple way, because I have to allow/modify/deny various users on> >daily basis, so is there a way I can edit any single file lets say> >/etc/macallowed , and there entries should be like, 00-08-74-4D-74-DE> >10.0.0.2 # John B-303 Sunview Appartments00-02-74-D2-74-F3 10.0.0.3 #> >Arnold 402 Aone BunglowsAnd so on . . .> Still not totally clear on what you need. It should be quite simple> to write a program that generates /etc/dhcpd.conf and restarts the> dhcp server when your MAC/IP mapping file changes. But perhaps you> are aiming for something else; please help us understand your> requirements.> Nick Urbanik RHCE http://nicku.org nicku at nicku.org
_________________________________________________________________
Put your friends on the big screen with Windows Vista® + Windows Live™.
http://www.microsoft.com/windows/shop/specialoffers.mspx?ocid=TXT_TAGLM_CPC_MediaCtr_bigscreen_012008
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/dhcp-users/attachments/20080113/db6811e1/attachment.html>

More information about the dhcp-users mailing list