[Kea-users] Expire single IP

Sten Carlsen stenc at s-carlsen.dk
Wed Sep 3 15:40:22 UTC 2025



> On 3 Sep 2025, at 16.14, Francis Dupont <fdupont at isc.org> wrote:
> 
>> I was wondering if we could expire a single ip address after 1 hour (or may
>> be less)
>> 
>> With the IP address in the database it is locked so the second device gets
>> an IP from the pool.
>> 
>> Of course we can release the IP but I was wondering if this can be automated=
>> so the the IP is Expired sooner
> 
> => in theory the protocol does not allow to expire a lease before its
> valid lifetime. So:
> - you can use the REST API to delete the lease
> - you can impersonate the client and release the lease
> - (more subtle) you can impersonate the client and renew the lease with
>   a shorter valid lifetime (Kea does not prevent this)...

If this is one address only why not give it a lifetime of max 1h? the added traffic should be marginal.

> 
> Another idea is to use the way Kea recognizes a client in particular
> behind a relay with option 82.
> 
> Regards
> 
> Francis Dupont <fdupont at isc.org>
> -- 
> ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information.
> 
> To unsubscribe visit https://lists.isc.org/mailman/listinfo/kea-users.
> Kea-users at lists.isc.org



More information about the Kea-users mailing list