host-identifier with IPv6

Frank Sweetser fs at WPI.EDU
Tue Mar 3 02:32:27 UTC 2009 

David W. Hankins wrote:
> On Tue, Mar 03, 2009 at 02:07:51PM +1300, Eustace, Glen wrote:
>>> Looking at this problem from another angle, how would you feel about
>>> assigning an IPv6 address to any client seen on a given switch port?
>> Ahhh, no thank you.
> 
> Ah, pity.  When Shane wrote the IPv6 host bits, we talked and decided
> on the host-identifier syntax explicitly for this kind of reason.  I
> was hoping there'd be a hardware address option eventually (or
> environments where you could pull it from relay forward options), and
> I knew there would be situations you'd want to use the hostname, or
> relay agent supplied options, like those that describe the switch port
> the client's packet was received on.  I wanted to backport it to
> DHCPv4 as well, since we get feature requests there all the time.
> It's remarkably trivial to backport.
> 
> So I gave him the impossible task of a config option that the user
> specifies the matching constraint, while still being a hash-table
> lookup and not some series of byte-compiled conditional stages.  The
> host-id syntax is how he solved it.
> 
>     host-identifier option fqdn.fqdn "foosrv.example.com";
>     host-identifier option agent.circuit-id "eth0";
> 
> Doesn't help for registration (since even if there was a hardware
> address option, clients today don't send it; you still need an
> interim solution).

Would it be feasible to define behavior where the circuit-id, or some other 
field with similar behavior, contained the client HW address?

The relay agent would have to be on the same broadcast domain, so it should be 
able to pick the address off the wire regardless of whether or not the client 
explicitly transmits it.  Similarly, in cases where there is no relay agent, 
the server would have to be on the same broadcast domain as the clients, and 
again can see the sending address.

This would:
   - allow the DUID to remain an opaque object consistent across all interfaces
   - resolve the ambiguity of which client interface was used to generate the DUID
   - be easily backported to DHCPv4 without any behavior change
   - be completely decoupled from client code and behavior
   - be much easier for admins to deploy, by updating router firmware or 
adding strategically placed hosts running relay agents, than waiting and 
hoping for OS updates (raise your hand if you still have Win98 machines on 
your network!)

Does this sound reasonable to everyone?

-- 
Frank Sweetser fs at wpi.edu  |  For every problem, there is a solution that
WPI Senior Network Engineer   |  is simple, elegant, and wrong. - HL Mencken
     GPG fingerprint = 6174 1257 129E 0D21 D8D4  E8A3 8E39 29E3 E2E8 8CEC

More information about the dhcp-users mailing list