<html><head><style type="text/css"><!-- DIV {margin:0px;} --></style></head><body><div style="font-family:arial, helvetica, sans-serif;font-size:13pt"><div><span class="Apple-style-span" style="font-size: small;">Hi Glenn,</span></div><div><span class="Apple-style-span" style="font-size: small;"><br></span></div><div><span class="Apple-style-span" style="font-size: small;">After removed the quote from the dhcpd.conf, the client still obtained the 10.1.1.x address.</span></div><div><span class="Apple-style-span" style="font-size: small;"><br></span></div><div><span class="Apple-style-span" style="font-size: small;">I've tried to log the agent.remote-id to syslog by:</span></div><div><span class="Apple-style-span" style="font-size: small;"><br></span></div><div><span class="Apple-style-span" style="font-size: small;"><div>if exists agent.remote-id {</div><div> log ( info, concat( "DHCPAGENT for lease of
",</div><div> binary-to-ascii (10, 8, ".", leased-address), " on agent ",</div><div> substring(option agent.remote-id, 2, 6)));</div><div>}</div><div><br></div><div>But from the log, I can't see the agent.remote-id:</div><div><br></div><div>Nov 17 10:03:48 LRMAPP01 dhcpd: DHCPAGENT for lease of 10.1.1.51 on agent </div><div><br></div><div>Any idea?</div><div><br></div><div>Best Regards,</div><div>Billy</div></span></div><div style="font-family:arial, helvetica, sans-serif;font-size:13pt"><br><div style="font-family:arial, helvetica, sans-serif;font-size:13px"><font size="2" face="Tahoma"><hr size="1"><b><span style="font-weight: bold;">寄件人﹕</span></b> Glenn Satchell <Glenn.Satchell@uniq.com.au><br><b><span style="font-weight: bold;">收件人﹕</span></b> dhcp-users@lists.isc.org<br><b><span style="font-weight: bold;">傳送日期﹕</span></b>
2009/11月/16 (一) 7:55:03 PM<br><b><span style="font-weight: bold;">主題:</span></b> Re: Assign Fix IP by Option 82<br></font><br>Ugh, now I see it:<br><br>> class "fix-1" {<br>> match if option agent.remote-id = "2:a:0:0:a:1:1:fe:b:0:0:0";<br>> }<br><br>the match line should not have the quotes, so it becomes:<br><br> match if option agent.remote-id = 2:a:0:0:a:1:1:fe:b:0:0:0;<br><br>With the quotes there it's looking for the literal string: "2",<br>"colon", "a", "colon" and so on... Without the quotes it represents the<br>list of hexadecimal octet values.<br><br>So it wasn't matching.<br><br>regards,<br>-glenn<br><br>>Date: Sun, 15 Nov 2009 20:13:54 -0800 (PST)<br>>From: Billy Ng <<a ymailto="mailto:mondeo1055@yahoo.com" href="mailto:mondeo1055@yahoo.com">mondeo1055@yahoo.com</a>><br>>Subject: Re: Assign Fix IP by Option 82<br>>To: Users of ISC DHCP <<a
ymailto="mailto:dhcp-users@lists.isc.org" href="mailto:dhcp-users@lists.isc.org">dhcp-users@lists.isc.org</a>><br>>X-BeenThere: <a ymailto="mailto:dhcp-users@lists.isc.org" href="mailto:dhcp-users@lists.isc.org">dhcp-users@lists.isc.org</a><br>><br>> Hi Glenn,<br>> <br>> Thanks for your info. I've tried your recommendation in my dhcpd.conf. But the <br>client still obtained the second pool IP address. Just wonder if the <br>"agent.remote-id" matched to the class defined in the conf file.<br>> <br>> DHCPD message:<br>> Nov 16 12:07:09 LRMAPP01 dhcpd: DHCPDISCOVER from 00:00:e8:00:99:b7 via eth1<br>> Nov 16 12:07:10 LRMAPP01 dhcpd: DHCPOFFER on 10.1.1.51 to 00:00:e8:00:99:b7 <br>(client) via eth1<br>> Nov 16 12:07:10 LRMAPP01 dhcpd: DHCPREQUEST for 10.1.1.51 (10.1.1.10) from <br>00:00:e8:00:99:b7 (client) via eth1<br>> Nov 16 12:07:10 LRMAPP01 dhcpd: DHCPACK on 10.1.1.51 to 00:00:e8:00:99:b7 <br>(client) via
eth1<br>> Nov 16 12:07:10 LRMAPP01 dhcpd: DHCPREQUEST for 10.1.1.51 (10.1.1.10) from <br>00:00:e8:00:99:b7 (client) via 10.1.1.254<br>> Nov 16 12:07:10 LRMAPP01 dhcpd: DHCPACK on 10.1.1.51 to 00:00:e8:00:99:b7 <br>(client) via 10.1.1.254<br>> <br>> DHCPD.lease:<br>> <br>> lease 10.1.1.51 {<br>> starts 1 2009/11/16 04:07:52;<br>> ends 1 2009/11/16 05:07:52;<br>> cltt 1 2009/11/16 04:07:52;<br>> binding state active;<br>> next binding state free;<br>> hardware ethernet 00:00:e8:00:99:b7;<br>> uid "\001\000\000\350\000\231\267";<br>> client-hostname "client";<br>> }<br>> lease 10.1.1.51 {<br>> starts 1 2009/11/16 04:07:52;<br>> ends 1 2009/11/16 05:07:52;<br>> cltt 1 2009/11/16 04:07:52;<br>> binding state active;<br>> next binding state free;<br>> hardware ethernet
00:00:e8:00:99:b7;<br>> uid "\001\000\000\350\000\231\267";<br>> option agent.remote-id 2:a:0:0:a:1:1:fe:b:0:0:0;<br>> client-hostname "client";<br>> }<br>> <br>> DHCPD.conf:<br>> <br>> subnet 172.16.1.0 netmask 255.255.255.0 {<br>> option broadcast-address 172.16.1.255;<br>> option routers 172.16.1.1;<br>> option domain-name "domain2.com";<br>> option subnet-mask 255.255.255.0;<br>> pool {<br>> allow members of "fix-1";<br>> range 172.16.1.10;<br>> deny dynamic bootp clients;<br>> }<br>> }<br>> <br>> subnet 10.1.1.0 netmask 255.255.255.0 {<br>> option domain-name "domain0.com";<br>> option broadcast-address 10.1.1.255;<br>> #range
10.1.1.51 10.1.1.60;<br>> pool {<br>> range 10.1.1.51 10.1.1.60;<br>> deny members of "fix-1";<br>> }<br>> }<br>> <br>> Best Regards,<br>> Billy<br>> <br>> <br>> <br>> ________________________________<br>> 寄件人﹕ Glenn Satchell <<a ymailto="mailto:Glenn.Satchell@uniq.com.au" href="mailto:Glenn.Satchell@uniq.com.au">Glenn.Satchell@uniq.com.au</a>><br>> 收件人﹕ <a ymailto="mailto:dhcp-users@lists.isc.org" href="mailto:dhcp-users@lists.isc.org">dhcp-users@lists.isc.org</a><br>> 傳送日期﹕ 2009/11月/16 (一) 11:16:20 AM<br>> 主題: Re: Assign Fix IP by Option 82<br>> <br>> Hi Billy<br>> <br>> This is normal behaviour as that class is also allowed by default in<br>> the second range. You need to add<br>> <br>> pool {<br>> range
10.1.1.51 10.1.1.60;<br>> deny members of "fix-1";<br>> }<br>> <br>> in the second subnet.<br>> <br>> As you can see, this works ok for a small number of hosts, but if you<br>> want to assign hundreds or more then it doesn't scale too well.<br>> <br>> regards,<br>> -glenn<br>> <br>> >Date: Sun, 15 Nov 2009 18:33:27 -0800 (PST)<br>> >From: Billy Ng <<a ymailto="mailto:mondeo1055@yahoo.com" href="mailto:mondeo1055@yahoo.com">mondeo1055@yahoo.com</a>><br>> ><br>> > Here is my dhcpd.conf:<br>> > <br>> > ddns-update-style none;<br>> > default-lease-time 3600;<br>> > max-lease-time 7200;<br>> > deny bootp;<br>> > stash-agent-options true;<br>> > <br>> > class "fix-1" {<br>> > match if option agent.remote-id = "2:a:0:0:a:1:1:fe:b:0:0:0";<br>> > }<br>> > <br>>
> shared-network NET1 {<br>> > subnet 172.16.1.0 netmask 255.255.255.0 {<br>> > option broadcast-address 172.16.1.255;<br>> > option domain-name "domain2.com";<br>> > option subnet-mask 255.255.255.0;<br>> > pool {<br>> > allow members of "fix-1";<br>> > range 172.16.1.10;<br>> > deny dynamic bootp clients;<br>> > }<br>> > }<br>> > <br>> > subnet 10.1.1.0 netmask 255.255.255.0 {<br>> > option domain-name "domain0.com";<br>> > option broadcast-address 10.1.1.255;<br>> > range 10.1.1.51 10.1.1.60;<br>> > }<br>> > <br>> > }<br>> > <br>> > But the client still obtained the IP address from the pool 10.1.1.x.<br>>
> <br>> > lease 10.1.1.51 {<br>> > starts 1 2009/11/16 02:14:42;<br>> > ends 1 2009/11/16 03:14:42;<br>> > cltt 1 2009/11/16 02:14:42;<br>> > binding state active;<br>> > next binding state free;<br>> > hardware ethernet 00:00:e8:00:99:b7;<br>> > uid "\001\000\000\350\000\231\267";<br>> > client-hostname "client";<br>> > }<br>> > lease 10.1.1.51 {<br>> > starts 1 2009/11/16 02:14:42;<br>> > ends 1 2009/11/16 03:14:42;<br>> > cltt 1 2009/11/16 02:14:42;<br>> > binding state active;<br>> > next binding state free;<br>> > hardware ethernet 00:00:e8:00:99:b7;<br>> > uid "\001\000\000\350\000\231\267";<br>> > option agent.remote-id 2:a:0:0:a:1:1:fe:b:0:0:0;<br>> > client-hostname "client";<br>> > }<br>> >
<br>> > Is the agent.remote-id value of the class match statement equal to the<br>> > dhcpd.leases file value? And refer to the dhcpd.leases, there're 2<br>> > records and the first one without the "agnent.remote-id". Just wonder<br>> > if it is a normal behavior. Thanks.<br>> > <br>> > Best Regards,<br>> > Billy<br>> > <br>> > <br><br>_______________________________________________<br>dhcp-users mailing list<br><a ymailto="mailto:dhcp-users@lists.isc.org" href="mailto:dhcp-users@lists.isc.org">dhcp-users@lists.isc.org</a><br><a href="https://lists.isc.org/mailman/listinfo/dhcp-users" target="_blank">https://lists.isc.org/mailman/listinfo/dhcp-users</a><br></div></div><div style="position:fixed"></div>
<!-- cg16.c2.mail.re1.yahoo.com compressed Wed Nov 4 17:57:46 PST 2009 -->
</div><br>
<hr size=1>Yahoo!香港提供網上安全攻略,教你如何防範黑客!<a href="http://hk.promo.yahoo.com/security/"><b>了解更多</b></a></body></html>