[Kea-users] Shared subnets configuration - input needed

Fri Sep 1 09:16:13 UTC 2017

Hello,

I prefer the first option.

But it would be even better if we had an "include" directive. I think it has already been suggested, maybe it's time to add this.
This would allow to easily move subnets from/to a shared network.

E.g.:

{
    "shared-networks": [
        {
            "name": "foo",
            "interface": "eth0"

            include "subnets4-foo.conf"
        },

        {
            "name": "bar",
            "interface": "eth1"

            include "subnets4-bar.conf"
        }
    ],

    include "subnets4-standalone.conf"
}

> Hello Kea Users,
> 
> We are currently working on implementation of a "shared networks"
> mechanism in Kea, to provide ability for grouping multiple subnets belonging to the same link.
> 
> This is useful to extend address pools for clients on the same physical link, i.e. clients located on this link may get addresses from different subnets. In such case, the DHCP server would allocate addresses from another subnet (and its pools) if there are no more addresses available in the first subnet.
> 
> It is also useful in cable networks, when a cable modem and a router are on the same physical link but they should get addresses from different subnets. Client classification is used in such case.
> 
> The ISC engineering team has been working on a design for this feature.
> One of the contentious points is how to organize shared networks configuration within the Kea config file.
> 
> We have discussed three different options. Let's call them A, B, C, which are briefly discussed below. The ISC engineering team is leaning towards A, but we'd also like to get some input from our Users what they think might be more convenient.
> 
> Proposal A
> 
> Sample configuration link:
> http://kea.isc.org/wiki/SharedSubnetsDesign#ConfigurationFormat
> 
> In this case, the shared-networks list contains a full specification of each subnet that belongs to shared networks. It is still possible to define subnets outside of the shared-networks scope. Such subnets will not be associated with any shared network.
> 
> Pros:
> - Make use of hierarchical nature of JSON - subnets enclosed within shared-networks structure belong to shared-networks. Other subnets do not. No need to refer to subnets from another structure by name or id etc.
> - Avoid configuration error whereby a single subnet may belong to different shared networks.
> - Avoid configuration error caused by manual matching of subnets with networks.
> - Is compatible with autogenerated subnet identifiers.
> - JSON viewing tools can be used to visualize which subnets belong to shared network by simply looking at the JSON hierarchy.
> - Is similar to other configuration structures we use (except option definitions).
> - Is similar to how it is organized in ISC DHCP.
> 
> Cons:
> - Moving subnets between shared networks requires copy pasting large portions of configuration (entire subnet specification has to be copied), possibly between distant locations in the configuration file.
> - Makes it hard to see how many subnets are specified within a shared network without JSON processing tools that can hide portions of the configuration.
> 
> 
> Proposal B
> Sample configuration link:
> http://kea.isc.org/wiki/SharedSubnetsDesign#Alternative1
> 
> This is the first of the proposals in which all subnets are defined at the same configuration level (regardless if they belong to shared networks or not). The shared-networks structure is separate and for each network it refers to subnet ids that belong to the shared network.
> 
> Pros:
> - shared-networks structure is much smaller because it only contains subnet identifiers, rather than full subnet definitions. It may also contain DHCP options etc.
> - It makes it easier to move subnets between shared networks (or remove them entirely) because it is just a matter of copy pasting subnet ids, rather than full network specifications.
> 
> Cons:
> - User error prone: subnet ids specified within shared-networks must exist. It is easy to specify id of non-existing subnet or id of a wrong subnet.
> - User error prone: it is possible to specify the same id in two different networks which is not allowed
> - If there are many subnets, specifying a subnet and associating it with a shared network means update to the config file in two different (possibly distant) locations.
> - Removal of a subnet belonging to a shared network requires config update in two different locations.
> - Is incompatible with autogenerated subnet identifiers because these identifiers may vary between server configurations, e.g. when any subnet is removed.
> - Generic JSON tools can't do matching between subnets and shared networks because they can't interpret subnet ids as a reference.
> 
> 
> Proposal C
> Sample configuration link:
> http://kea.isc.org/wiki/SharedSubnetsDesign#Alternative2
> 
> Pros:
> - Has the same pros as proposal B
> - It avoids the use of subnet ids, but uses shared network names (subnet ids autogeneration problem is solved)
> - Resolves a problem with proposal B, whereby it was possible to assign a single subnet to multiple networks.
> - Removal of a subnet is easier than in B, because it is enough to delete subnet declaration.
> 
> Cons:
> - Comparing to B, it makes it harder to know how many subnets belong to shared network, because we'd need to search for all subnets that have a parameter "network" set to a given name.
> - Some other unresolved cons from proposal B.
> 
> 
> We're planning to close the discussion around Monday/Tuesday next week.
> We'd appreciate any input before that time.
> 
> Kind Regards,
> 
> Marcin Siodelski
> ISC Engineering Team
> _______________________________________________
> Kea-users mailing list
> Kea-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/kea-users
>
This message contains information that may be privileged or confidential and is the property of the Capgemini Group. It is intended only for the person to whom it is addressed. If you are not the intended recipient, you are not authorized to read, print, retain, copy, disseminate, distribute, or use this message or any part thereof. If you receive this message in error, please notify the sender immediately and delete all copies of this message.