ISC DHCP 4.4.1_CentOS7_DHCPv6_Relay_server: issue related with Class matching option along with condition.

PaviGuru Pavithragurumurthy gurumurthyka at gmail.com
Thu Nov 8 14:59:16 UTC 2018 

Hello,



Thanks for your valuable input. DHCPv6 Option 18 Interface-id it worked.



IP allocation is working if match found, else no IP allocation.





*Dhcpd6.conf*

class "team" {

        match if(

         (substring (v6relay(1, option dhcp6.interface-id), 0, 8) =
"TESTING|")

);

}



subnet6 3001:db8:100:f101::0/64 {

  pool6 {

    allow members of "team";

    range6 3001:db8:100:f101::0:100 3001:db8:100:f101::0:1FF;

  }

}





*root at tester:/home/tester# dhcpd -6 -cf /etc/dhcp/dhcpd6.conf -lf
/var/lib/dhcp/dhcpd6.leases eth0  -d*

Internet Systems Consortium DHCP Server 4.4.1

Copyright 2004-2018 Internet Systems Consortium.

All rights reserved.

For info, please visit https://www.isc.org/software/dhcp/

Config file: /etc/dhcp/dhcpd6.conf

Database file: /var/lib/dhcp/dhcpd6.leases

PID file: /var/run/dhcpd6.pid

Wrote 0 class decls to leases file.

Wrote 4 NA, 0 TA, 0 PD leases to lease file.

Bound to *:547

Listening on Socket/5/eth0/3001:db8:100:f101::/64

Sending on   Socket/5/eth0/3001:db8:100:f101::/64

Server starting service.

Relay-forward message from 3001:db8:100:f101:62a8:feff:feab:5500 port 547,
link address 3001:db8:100:f101:62a8:feff:feab:5500, peer address
fe80::208:2ff:fe01:1

Advertise NA: address 3001:db8:100:f101::103 to client with duid
00:01:00:01:00:00:00:00:00:08:02:01:00:01 iaid = 141616593 valid for 86400
seconds

Sending Relay-reply to 3001:db8:100:f101:62a8:feff:feab:5500 port 547

Relay-forward message from 3001:db8:100:f101:62a8:feff:feab:5500 port 547,
link address 3001:db8:100:f101:62a8:feff:feab:5500, peer address
fe80::208:2ff:fe01:1

Reply NA: address 3001:db8:100:f101::103 to client with duid
00:01:00:01:00:00:00:00:00:08:02:01:00:01 iaid = 141616593 valid for 86400
seconds

Reusing lease for: 3001:db8:100:f101::103, age 19572 secs < 25%, sending
shortened lifetimes - preferred: 34428, valid 66828

Sending Relay-reply to 3001:db8:100:f101:62a8:feff:feab:5500 port 547



*For Option 37 _remote ID*

IP allocation is not working, I used same way of interface-id. But match
got failed. I assume there is no changes on config file. It should work !!.
any clue ?

*Attached pcap DHCPv6_Match_remote-ID.pcap*



*Dhcpd6.conf*

class "team" {

        match if(

         (substring (v6relay(1, option dhcp6.remote-id), 0, 8) = "TESTING|")

);

}



subnet6 3001:db8:100:f101::0/64 {

  pool6 {

    allow members of "team";

    range6 3001:db8:100:f101::0:100 3001:db8:100:f101::0:1FF;

  }

}





*root at tester:/home/tester# dhcpd -6 -cf /etc/dhcp/dhcpd6.conf -lf
/var/lib/dhcp/dhcpd6.leases eth0  -d*

Internet Systems Consortium DHCP Server 4.4.1

Copyright 2004-2018 Internet Systems Consortium.

All rights reserved.

For info, please visit https://www.isc.org/software/dhcp/

Config file: /etc/dhcp/dhcpd6.conf

Database file: /var/lib/dhcp/dhcpd6.leases

PID file: /var/run/dhcpd6.pid

Wrote 0 class decls to leases file.

Wrote 0 NA, 0 TA, 0 PD leases to lease file.

Bound to *:547

Listening on Socket/5/eth0/3001:db8:100:f101::/64

Sending on   Socket/5/eth0/3001:db8:100:f101::/64

Server starting service.

Relay-forward message from 3001:db8:100:f101:62a8:feff:feab:5500 port 547,
link address 3001:db8:100:f101:62a8:feff:feab:5500, peer address
fe80::208:2ff:fe01:1

*Unable to pick client address: no addresses available*  - shared network
3001:db8:100:f101::/64: 0 total, 0 active,  0 abandoned

Sending Relay-reply to 3001:db8:100:f101:62a8:feff:feab:5500 port 547

Relay-forward message from 3001:db8:100:f101:62a8:feff:feab:5500 port 547,
link address 3001:db8:100:f101:62a8:feff:feab:5500, peer address
fe80::208:2ff:fe01:1

*Unable to pick client address: no addresses available*  - shared network
3001:db8:100:f101::/64: 0 total, 0 active,  0 abandoned

Sending Relay-reply to 3001:db8:100:f101:62a8:feff:feab:5500 port 547

Relay-forward message from 3001:db8:100:f101:62a8:feff:feab:5500 port 547,
link address 3001:db8:100:f101:62a8:feff:feab:5500, peer address
fe80::208:2ff:fe01:1

Unable to pick client address: no addresses available  - shared network
3001:db8:100:f101::/64: 0 total, 0 active,  0 abandoned

Sending Relay-reply to 3001:db8:100:f101:62a8:feff:feab:5500 port 547

Relay-forward message from 3001:db8:100:f101:62a8:feff:feab:5500 port 547,
link address 3001:db8:100:f101:62a8:feff:feab:5500, peer address
fe80::208:2ff:fe01:1

Unable to pick client address: no addresses available  - shared network
3001:db8:100:f101::/64: 0 total, 0 active,  0 abandoned

Sending Relay-reply to 3001:db8:100:f101:62a8:feff:feab:5500 port 547



Thanks

Guru

On Thu, Nov 8, 2018 at 6:28 PM yoshihiko fujita <fujita at ncad.co.jp> wrote:

>
> Hi
>
> I think that now can be solved
> match if substring(v6relay(1, option dhcp6.interface-id), 0, 8) =
> "TESTING|”;
>
> Good luck!
> _______________________________________________
> dhcp-users mailing list
> dhcp-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/dhcp-users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/dhcp-users/attachments/20181108/00613eba/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: DHCPv6_Match_Interface-ID.pcap
Type: application/octet-stream
Size: 28969 bytes
Desc: not available
URL: <https://lists.isc.org/pipermail/dhcp-users/attachments/20181108/00613eba/attachment-0002.obj>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: DHCPv6_Match_remote-ID.pcap
Type: application/octet-stream
Size: 49824 bytes
Desc: not available
URL: <https://lists.isc.org/pipermail/dhcp-users/attachments/20181108/00613eba/attachment-0003.obj>

More information about the dhcp-users mailing list