Need vendor class identifier advice

Keith Perry (perryk) perryk at cisco.com
Mon Sep 16 14:01:30 UTC 2013 

The boolean match syntax you have appears to be correct.  I use the same exact syntax in a number of scenarios and it works just fine.   Here's how I would accomplish what you need to do.  I don't bother with sub classes, just create a class and add all the different string/substring matches you want to be in that classs.  In my case, I have one class which has 10 different string/substring matches that belong to it.    

################
#   IPPHONE Vendor Class #
################

class "IPPHONE" {
     match if substring (option vendor-class-identifier, 0, 28) = "Cisco Systems, Inc. IP Phone"
     or substring (option vendor-class-identifier, 0, 14) = "Cisco IP Phone";
     
}

# The following line populates the lease file with the Vendor Class Identifier
# that the client sends.
#

set vendor-string = option vendor-class-identifier;



Regards,

Keith



-----Original Message-----
From: dhcp-users-bounces+perryk=cisco.com at lists.isc.org [mailto:dhcp-users-bounces+perryk=cisco.com at lists.isc.org] On Behalf Of Doug Barton
Sent: Friday, September 13, 2013 5:13 PM
To: dhcp-users at lists.isc.org
Subject: Need vendor class identifier advice

Current client has a lot of Cisco phones of various ages, models, etc.;
and users who can't figure out which LAN ports to plug them into. So
they tried to set up a vendor match class to deny the phones getting
addresses if they are plugged into the wrong VLAN, but it's not working
(or at least, it's not working thoroughly, some phones are still getting
addresses on the wrong VLANs).

The match class that they have expands out as follows in the dhcpd.conf
file:

class "IPPHONE"
{
      match substring (option vendor-class-identifier, 0, 28);
}
subclass "IPPHONE" "Cisco Systems, Inc. IP Phone";

According to the research I've done so far that will match some (most?)
phones, but there is another string that they can send, "Cisco IP Phone
...". The problem I'm seeing is that if I define a vendor class with a
certain substring match length I can't then add a match class value of a
shorter length (which makes sense of course); and the 14 characters of
"Cisco IP Phone" isn't enough of a discriminator for the longer string.

I could create 2 match classes and put 'deny class members of' options
in for both of them, but that seems inefficient. :)  I'm trying to write
a custom boolean match like this:

match if substring (option vendor-class-identifier,0,28) = "Cisco
Systems, Inc. IP Phone" or substring (option
vendor-class-identifier,0,14) = "Cisco IP Phone";

But I haven't been able to figure out a syntax for this kind of match
that will actually work. I also tried this:

match if option vendor-class-identifier =~ "Cisco *IP Phone";

Same issue. Any suggestions welcome.

(BTW, MAC addresses aren't a viable solution here, long story)

Doug

_______________________________________________
dhcp-users mailing list
dhcp-users at lists.isc.org
https://lists.isc.org/mailman/listinfo/dhcp-users

More information about the dhcp-users mailing list