dhcpClassesDN ignored?
Márcio Merlone
marcio.merlone at a1.ind.br
Tue Dec 2 18:42:42 UTC 2014
On 02-12-2014 16:27, Brendan Kearney wrote:
> On Tue, 2014-12-02 at 16:15 -0200, Márcio Merlone wrote:
>> Hi,
>>
>> Following my last mails regarding DHCP+LDAP, seems like dhcpd ignores
>> dhcpClassesDN. I am trying to create a branch to store dhcpClasses,
>> dhcpSubClasses outside the dhcpService DN so they can be read by many
>> dhcp servers.
>> (...)
>> So the "dhcpClassesDN: ou=classes,ou=dhcp,ou=Daemons,dc=domain,dc=tld"
>> is ignored and subclasses are searched only inside the dhcpService
>> cn=conf. Is this expected? Have I misunderstood what dhcpXxxxxxDN is for?
> just a guess but try moving these statements:
>
> dhcpSharedNetworkDN:
> cn=A1,cn=dhcp,cn=donald,ou=dhcp,ou=Daemons,dc=domain,dc=tld
> dhcpClassesDN: ou=classes,ou=dhcp,ou=Daemons,dc=domain,dc=tld
> dhcpHostDN: cn=hosts,ou=dhcp,ou=Daemons,dc=domain,dc=tld
> dhcpPrimaryDN: cn=donald,ou=dhcp,ou=Daemons,dc=domain,dc=tld
> dhcpSubnetDN:
> cn=10.1.1.0,cn=A1,cn=conf,cn=donald,ou=dhcp,ou=Daemons,dc=domain,dc=tld
>
> to
>
> # donald, dhcp, Daemons, domain.tld
> dn: cn=donald,ou=dhcp,ou=Daemons,dc=domain,dc=tld
>
> where you define the dhcpServiceDN
>
> you can use tcpdump or wireshark to see the actual ldap queries. that
> may point you at an error or some piece of logic you have not considered
> yet.
Done, adjusted dhcpSubnetDN and dhcpSharedNetworkDN on
cn=conf,cn=donald,ou=dhcp,ou=Daemons,dc=a1,dc=ind to match:
# conf, donald, dhcp, Daemons, a1.ind
dn: cn=conf,cn=donald,ou=dhcp,ou=Daemons,dc=a1,dc=ind
cn: conf
objectClass: top
objectClass: dhcpService
objectClass: dhcpOptions
dhcpStatements: authoritative
dhcpStatements: always-broadcast on
dhcpStatements: max-lease-time 86400
dhcpStatements: default-lease-time 7200
dhcpStatements: min-lease-time 3600
dhcpStatements: deny client-updates
dhcpOption: wpad code 252 = text
dhcpOption: wpad "http://wpad.a1.ind.br/wpad.dat"
dhcpClassesDN: ou=classes,ou=dhcp,ou=Daemons,dc=a1,dc=ind
dhcpHostDN: cn=hosts,ou=dhcp,ou=Daemons,dc=a1,dc=ind
dhcpPrimaryDN: cn=donald,ou=dhcp,ou=Daemons,dc=a1,dc=ind
dhcpSharedNetworkDN: cn=A1,cn=donald,ou=dhcp,ou=Daemons,dc=a1,dc=ind
dhcpSubnetDN: cn=10.1.1.0,cn=A1,cn=donald,ou=dhcp,ou=Daemons,dc=a1,dc=ind
... and got this (no need of tcpdump, local4.* is also going to syslog):
Dec 2 16:36:36 donald dhcpd: Internet Systems Consortium DHCP Server 4.2.4
Dec 2 16:36:36 donald dhcpd: Copyright 2004-2012 Internet Systems
Consortium.
Dec 2 16:36:36 donald dhcpd: All rights reserved.
Dec 2 16:36:36 donald dhcpd: For info, please visit
https://www.isc.org/software/dhcp/
Dec 2 16:36:36 donald slapd[1311]: conn=1255 fd=41 ACCEPT from
IP=[::1]:58074 (IP=[::]:389)
Dec 2 16:36:36 donald slapd[1311]: conn=1255 op=0 BIND
dn="cn=admin,dc=a1,dc=ind" method=128
Dec 2 16:36:36 donald slapd[1311]: conn=1255 op=0 BIND
dn="cn=admin,dc=a1,dc=ind" mech=SIMPLE ssf=0
Dec 2 16:36:36 donald slapd[1311]: conn=1255 op=0 RESULT tag=97 err=0 text=
Dec 2 16:36:36 donald slapd[1311]: conn=1255 op=1 SRCH
base="ou=dhcp,ou=Daemons,dc=a1,dc=ind" scope=2 deref=0
filter="(&(objectClass=dhcpServer)(|(cn=donald)(cn=donald.a1.ind.br)))"
Dec 2 16:36:36 donald slapd[1311]: conn=1255 op=1 SEARCH RESULT tag=101
err=0 nentries=1 text=
Dec 2 16:36:36 donald slapd[1311]: conn=1255 op=2 SRCH
base="cn=conf,cn=donald,ou=dhcp,ou=Daemons,dc=a1,dc=ind" scope=0 deref=0
filter="(&(objectClass=dhcpService)(|(dhcpPrimaryDN=cn=donald,ou=dhcp,ou=daemons,dc=a1,dc=ind)(dhcpSecondaryDN=cn=donald,ou=dhcp,ou=daemons,dc=a1,dc=ind)))"
Dec 2 16:36:36 donald slapd[1311]: conn=1255 op=2 SEARCH RESULT tag=101
err=0 nentries=1 text=
Dec 2 16:36:36 donald slapd[1311]: conn=1255 op=3 SRCH
base="cn=conf,cn=donald,ou=dhcp,ou=Daemons,dc=a1,dc=ind" scope=1 deref=0
filter="(objectClass=*)"
Dec 2 16:36:36 donald slapd[1311]: conn=1255 op=3 SEARCH RESULT tag=101
err=0 nentries=0 text=
Dec 2 16:36:36 donald slapd[1311]: conn=1255 op=4 SRCH
base="cn=A1,cn=donald,ou=dhcp,ou=Daemons,dc=a1,dc=ind" scope=0 deref=0
filter="(objectClass=*)"
Dec 2 16:36:36 donald slapd[1311]: conn=1255 op=4 SEARCH RESULT tag=101
err=0 nentries=1 text=
Dec 2 16:36:36 donald slapd[1311]: conn=1255 op=5 SRCH
base="cn=10.1.1.0,cn=A1,cn=donald,ou=dhcp,ou=Daemons,dc=a1,dc=ind"
scope=0 deref=0 filter="(objectClass=*)"
Dec 2 16:36:36 donald slapd[1311]: conn=1255 op=5 SEARCH RESULT tag=101
err=0 nentries=1 text=
Dec 2 16:36:36 donald slapd[1311]: conn=1255 op=6 SRCH
base="cn=hosts,ou=dhcp,ou=Daemons,dc=a1,dc=ind" scope=0 deref=0
filter="(objectClass=*)"
Dec 2 16:36:36 donald slapd[1311]: conn=1255 op=6 SEARCH RESULT tag=101
err=0 nentries=1 text=
Dec 2 16:36:36 donald slapd[1311]: conn=1255 op=7 SRCH
base="ou=classes,ou=dhcp,ou=Daemons,dc=a1,dc=ind" scope=0 deref=0
filter="(objectClass=*)"
Dec 2 16:36:36 donald slapd[1311]: conn=1255 op=7 SEARCH RESULT tag=101
err=0 nentries=1 text=
Dec 2 16:36:36 donald dhcpd: Wrote 0 leases to leases file.
Dec 2 16:36:36 donald dhcpd:
Dec 2 16:36:36 donald dhcpd: No subnet declaration for eth0 (10.1.1.1).
Dec 2 16:36:36 donald dhcpd: ** Ignoring requests on eth0. If this is
not what
Dec 2 16:36:36 donald dhcpd: you want, please write a subnet declaration
Dec 2 16:36:36 donald dhcpd: in your dhcpd.conf file for the network
segment
Dec 2 16:36:36 donald dhcpd: to which interface eth0 is attached. **
Dec 2 16:36:36 donald dhcpd:
Dec 2 16:36:36 donald dhcpd:
Dec 2 16:36:36 donald dhcpd: Not configured to listen on any interfaces!
Dec 2 16:36:36 donald slapd[1311]: conn=1255 fd=41 closed (connection lost)
Thanks anyway.
--
*Marcio Merlone*
TI - Administrador de redes
*A1 Engenharia - Unidade Corporativa*
Fone: +55 41 3616-3797
Cel: +55 41 9689-0036
http://www.a1.ind.br/ <http://www.a1.ind.br>
More information about the dhcp-users
mailing list