[Kea-users] Vendor specific options (Option 43 + 60)
Bohnenberger, Mark
mark.bohnenberger at bechtle.com
Wed Nov 24 14:53:35 UTC 2021
With the following configuration (and my modifications) I have the problem that the Ip of the controller will be advertised in wireshark with 2 unneeded chars in front of the IP.
Option: (43) Vendor-Specific Information (Aruba AP)
Length: 11
Aruba Controller IP: �\t10.8.8.41
"option-def":[{
"name":"controller",
"code": 43,
"type": "string",
"space": "aruba"
"encapsulate":""
}],
"client-classes":[{
"name": "aruba",
"test": "option[vendor-class-identifier].text == 'ArubaAP'",
"option-def": [{
"name":"vendor-encapsulated-options",
"code": 43,
"type": "empty",
"encapsulate":"aruba"
}],
"option-data": [
{
"name":"controller",
"space":"aruba",
"data": "10.2.4.201"
},
{
"name":"vendor-encapsulated-options"
},
{
"name": "vendor-class-identifier",
"data": "ArubaAP"
}
]
}],
With another config I got the correct controller address advertised but with type “ipv4-address” and the Aruba Aps are needing “string”. If I use string in the option-def I receive an error message that “type 16 is not supported”?
"option-def": [
{
"name": "aruba",
"code": 43,
"type": "ipv4-address"
}
],
"client-classes": [
{
"name": "aruba",
"test": "substring(option[60].hex,0,7) == 'ArubaAP'",
"option-data": [
{
"name": "aruba",
"code": 43,
"data": "10.2.4.201"
},
{
"name": "vendor-class-identifier",
"data": "ArubaAP"
}
]
}
],
Both solutions ends at 99% with an error ☹
Mark
Von: chang wang <plasticsmile3 at gmail.com>
Gesendet: Mittwoch, 17. November 2021 23:06
An: Bohnenberger, Mark <mark.bohnenberger at bechtle.com>
Betreff: Re: [Kea-users] Vendor specific options (Option 43 + 60)
Hi Mark,
I will share the relevant pieces from my config.
You might need to modify them for your need.
"Dhcp4": {
"option-def":[{
"name":"controller",
"code": 241,
"type": "ipv4-address",
"space": "Cisco",
"encapsulate":""
}],
.
.
.
"client-classes":[{
"name": "Cisco",
"test": "option[vendor-class-identifier].text == 'Cisco AP c1700'",
"option-def": [{
"name":"vendor-encapsulated-options",
"code": 43,
"type": "empty",
"encapsulate":"Cisco"
}],
"option-data": [{
"name":"controller",
"space":"Cisco",
"data": "<ip address>"
},
{
"name":"vendor-encapsulated-options"
}
]
}],
On Tue, Nov 16, 2021 at 4:01 PM Bohnenberger, Mark <mark.bohnenberger at bechtle.com<mailto:mark.bohnenberger at bechtle.com>> wrote:
I use the Kea DHCP server (V 2.0.0) the first time and everything is working fine incl. HA etc.
But I have a problem with the option 43 and the vendor classes. I need to send to some Aruba APs the IP Address for their management controller via option 43 and filtering to a specific option 60 string. I tried some configurations, but the DHCP Server will not send the option 43 in a correct way. For the ISC DHCP the config file must looking like this, but I cant find a conversion of that configuration to kea.
option serverip code 43 = ip-address;
class "vendor-class" {
match option vendor-class-identifier;
}
subnet 10.200.10.0 netmask 255.255.255.0 {
default-lease-time 200;
max-lease-time 200;
option subnet-mask 255.255.255.0;
option routers 10.200.10.1;
option domain-name-servers 10.4.0.12;
option domain-name "vlan10.aa.mycorpnetworks.com<https://urldefense.com/v3/__http:/vlan10.aa.mycorpnetworks.com__;!!J748QdifiTU!3YNEZ8gT9E5Wd_pB2LX66AKX7sN7Hry7defpWILGlzl2ZRbMCX_eOvM8iwc7r7mhZfK1qhg$>";
subclass "vendor-class" "ArubaAP" {
option vendor-class-identifier "ArubaAP";
option serverip 10.200.10.10;
}
range 10.200.10.200 10.200.10.252;
}
At the moment I have this configuration running, but it is not sending any option 43 data to the access-points, plus the client-class entry on the corresponding subnet.
"client-classes": [
{
"name": "WLAN-Controller-Test",
"test": "substring(option[60].hex,0,6) == 'ArubaAP'",
"option-def": [
{
"code": 43,
"name": "vendor-encapsulated-options",
"type": "string"
}
],
"option-data": [
{
"code": 43,
"name": "vendor-encapsulated-options",
"data": "10.1.1.201"
}
]
},
]
In the debug I receive this messages:
DEBUG DHCP4_SUBNET_SELECTION_FAILED [hwtype=1 cc:88:c7:c7:dc:78], cid=[01:cc:88:c7:c7:dc:78], tid=0x4b2c7d44: failed to select subnet for the client
DEBUG DHCP4_CLASS_ASSIGNED [hwtype=1 cc:88:c7:c7:dc:78], cid=[01:cc:88:c7:c7:dc:78], tid=0x4b2c7d44: client packet has been assigned to the following class(es): UNKNOWN
DEBUG DHCP4_CLASS_ASSIGNED [hwtype=1 cc:88:c7:c7:dc:78], cid=[01:cc:88:c7:c7:dc:78], tid=0x4b2c7d44: client packet has been assigned to the following class(es): ALL, VENDOR_CL_ArubaInstantAP, UNKNOWN
I think, that the UNKNOWN class is either the wrong sent option 43 or option 60
Kind regards
Mark
Mit freundlichen Grüßen
Mark Bohnenberger
IT Consultant - Networking Solutions
Bechtle GmbH
_______________________________________________
ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/<https://urldefense.com/v3/__https:/www.isc.org/contact/__;!!J748QdifiTU!3YNEZ8gT9E5Wd_pB2LX66AKX7sN7Hry7defpWILGlzl2ZRbMCX_eOvM8iwc7r7mhhOQUj_g$> for more information.
To unsubscribe visit https://lists.isc.org/mailman/listinfo/kea-users<https://urldefense.com/v3/__https:/lists.isc.org/mailman/listinfo/kea-users__;!!J748QdifiTU!3YNEZ8gT9E5Wd_pB2LX66AKX7sN7Hry7defpWILGlzl2ZRbMCX_eOvM8iwc7r7mhi1K6Q38$>.
Kea-users mailing list
Kea-users at lists.isc.org<mailto:Kea-users at lists.isc.org>
https://lists.isc.org/mailman/listinfo/kea-users<https://urldefense.com/v3/__https:/lists.isc.org/mailman/listinfo/kea-users__;!!J748QdifiTU!3YNEZ8gT9E5Wd_pB2LX66AKX7sN7Hry7defpWILGlzl2ZRbMCX_eOvM8iwc7r7mhi1K6Q38$>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/kea-users/attachments/20211124/c6b16482/attachment-0001.htm>
More information about the Kea-users
mailing list