[Kea-users] Fwd: NTP servers?

Omar Othman omar.m.othman at gmail.com
Mon Apr 18 13:13:40 UTC 2022 

Hi all,

Our company does PXE over HTTPS, and every time the server tries to PXE
boot while having a bad time; things fail because of the SSL handshake (of
course). I have to mount a rescue image, adjust the time, and only then
would the PXE process flow normally. I would like to automate this.

What I understand is that I can add ntp-servers to the configuration. I've
tried that but didn't get anything useful out of it. I tried time-servers
as well since I didn't really understand the difference between both (now I
do). We do have internal NTP servers in the company.

Any advice to what I am missing? Or is my understanding wrong and this
can't be automated?

Here is the first part of our configuration file, important parts are
highlighted:

{
  "Dhcp4": {
    "loggers": [
      {
        "name": "kea-dhcp4",
        "output_options": [
          {
            "output": "/var/log/kea-dhcp4.log",
            "maxsize": 536870912,
            "maxver": 2
          }
        ],
        "severity": "INFO",
        "debuglevel": 0
      },
      {
        "name": "kea-dhcp4.bad-packets",
        "output_options": [
          {
            "output": "/var/log/kea-dhcp4.bad-packets.log",
            "maxsize": 536870912,
            "maxver": 2
          },
          {
            "output": "syslog"
          }
        ],
        "severity": "DEBUG",
        "debuglevel": 50
      }
    ],
    "match-client-id": false,
    "reservation-mode": "disabled",
    "hooks-libraries": [
      {
        "library": "/usr/share/something.so",
        "parameters": {
          "something_socket": "/run/something/something.sock"
        }
      }
    ],
    "next-server": "SECRET_IP",
    "control-socket": {
      "socket-type": "unix",
      "socket-name": "/var/run/kea/kea-dhcp4.socket"
    },
    "dhcp-queue-control": {
      "enable-queue": true,
      "queue-type": "kea-ring4",
      "capacity": 500
    },
    "client-classes": [
      {
        "name": "HTTPClient",
        "test": "option[93].hex == 0x0010",
        "option-data": [
          {
            "name": "vendor-class-identifier",
            "data": "HTTPClient"
          }
        ],
        "boot-file-name": "https://fqdn/filename"
      },
      {
        "name": "UEFI",
        "test": "option[93].hex == 0x0007",
        "boot-file-name": "filename"
      },
      {
        "name": "Legacy",
        "test": "option[93].hex == 0x0000",
        "boot-file-name": "ipxe.pxe"
      },
      {
        "name": "iPXE",
        "test": "substring(option[77].hex,0,4) == 'iPXE'",
        "boot-file-name": "https://anotherfqdn/iPXE"
      }
    ],
    "option-data": [
      {
        "name": "domain-name-servers",
        "data": "SECRET_IP, SECRET_IP"
      },
      {
        "name": "ntp-servers",
        "data": "SECRET_IP, SECRET_IP, SECRET_IP, SECRET_IP"
      },
      {
        "name": "time-servers",
        "data": "SECRET_IP, SECRET_IP, SECRET_IP, SECRET_IP"
      },
      {
        "name": "domain-search",
        "data": "fqdn, fqdn"
      },
      {
        "name": "domain-name",
        "data": "fqdn"
      }
    ],
    "interfaces-config": {
      "interfaces": [
-- 
Best Regards,

*Omar Othman*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/kea-users/attachments/20220418/75d12b8c/attachment.htm>

More information about the Kea-users mailing list