PXE Client configuration
Drew Weaver
drew.weaver at thenap.com
Mon Feb 15 17:50:11 UTC 2010
Why not only allow tftp from those subnets?
-Drew
-----Original Message-----
From: dhcp-users-bounces+drew.weaver=thenap.com at lists.isc.org [mailto:dhcp-users-bounces+drew.weaver=thenap.com at lists.isc.org] On Behalf Of Jason Frisvold
Sent: Monday, February 15, 2010 12:32 PM
To: dhcp-users at lists.isc.org
Subject: PXE Client configuration
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Greetings,
We're running dhcp 3.0.5, RHEL packages, and readying ourselves to
deploy a configuration that will allow PXE booting. We have this
working successfully in the lab, but we're looking to restrict this on
some subnets. So, the question is, how?
I have this class definition, but it matches on every subnet. I know I
can add a deny members of "pxeclients" to each subnet, but there are far
more subnets I want to deny than subnets to allow. Is there a way to
deny by default and allow only where explicitly defined?
class "pxeclients" {
match if substring(option vendor-class-identifier, 0, 9) = "PXEClient";
next-server pxe.example.com;
filename "x86pc/undi/wpemenu/startrom.0";
}
Thanks,
- --
- ---------------------------
Jason Frisvold
Network Engineer
frisvolj at lafayette.edu
- ---------------------------
"What I cannot create, I do not understand"
- Richard Feynman
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.13 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
iEYEARECAAYFAkt5hR0ACgkQO80o6DJ8UvkGNwCeKvodkpnKFV2d9WfEJpjvCcVT
UFQAnieQiooVyzAkfFDCrzjne3ifELhV
=S6jr
-----END PGP SIGNATURE-----
_______________________________________________
dhcp-users mailing list
dhcp-users at lists.isc.org
https://lists.isc.org/mailman/listinfo/dhcp-users
More information about the dhcp-users
mailing list