|
|
f9ed25 |
From 846779467f7393b19e8d206405116e1e26e16efc Mon Sep 17 00:00:00 2001
|
|
|
f9ed25 |
From: Pavel Zhukov <pzhukov@redhat.com>
|
|
|
f9ed25 |
Date: Thu, 21 Feb 2019 10:25:53 +0100
|
|
|
f9ed25 |
Subject: [PATCH 06/26] Various man-page-only fixes
|
|
|
f9ed25 |
Cc: pzhukov@redhat.com
|
|
|
f9ed25 |
|
|
|
f9ed25 |
---
|
|
|
f9ed25 |
client/dhclient-script.8 | 22 +++++++++++++++++++++-
|
|
|
f9ed25 |
client/dhclient.conf.5 | 14 +++++++++++++-
|
|
|
f9ed25 |
common/dhcp-options.5 | 15 +++++++++++++++
|
|
|
f9ed25 |
server/dhcpd.conf.5 | 14 +++++++++-----
|
|
|
f9ed25 |
4 files changed, 58 insertions(+), 7 deletions(-)
|
|
|
f9ed25 |
|
|
|
f9ed25 |
diff --git a/client/dhclient-script.8 b/client/dhclient-script.8
|
|
|
f9ed25 |
index 3553afd..0db5516 100644
|
|
|
f9ed25 |
--- a/client/dhclient-script.8
|
|
|
f9ed25 |
+++ b/client/dhclient-script.8
|
|
|
f9ed25 |
@@ -43,7 +43,7 @@ customizations are needed, they should be possible using the enter and
|
|
|
f9ed25 |
exit hooks provided (see HOOKS for details). These hooks will allow the
|
|
|
f9ed25 |
user to override the default behaviour of the client in creating a
|
|
|
f9ed25 |
.B /etc/resolv.conf
|
|
|
f9ed25 |
-file.
|
|
|
f9ed25 |
+file, and to handle DHCP options not handled by default.
|
|
|
f9ed25 |
.PP
|
|
|
f9ed25 |
No standard client script exists for some operating systems, even though
|
|
|
f9ed25 |
the actual client may work, so a pioneering user may well need to create
|
|
|
f9ed25 |
@@ -87,6 +87,26 @@ present. The
|
|
|
f9ed25 |
.B ETCDIR/dhclient-exit-hooks
|
|
|
f9ed25 |
script can modify the valid of exit_status to change the exit status
|
|
|
f9ed25 |
of dhclient-script.
|
|
|
f9ed25 |
+.PP
|
|
|
f9ed25 |
+Immediately after dhclient brings an interface UP with a new IP address,
|
|
|
f9ed25 |
+subnet mask, and routes, in the REBOOT/BOUND states, it will check for the
|
|
|
f9ed25 |
+existence of an executable
|
|
|
f9ed25 |
+.B ETCDIR/dhclient-up-hooks
|
|
|
f9ed25 |
+script, and source it if found. This script can handle DHCP options in
|
|
|
f9ed25 |
+the environment that are not handled by default. A per-interface.
|
|
|
f9ed25 |
+.B ETCDIR/dhclient-${IF}-up-hooks
|
|
|
f9ed25 |
+script will override the generic script and be sourced when interface
|
|
|
f9ed25 |
+$IF has been brought up.
|
|
|
f9ed25 |
+.PP
|
|
|
f9ed25 |
+Immediately before dhclient brings an interface DOWN, removing its IP
|
|
|
f9ed25 |
+address, subnet mask, and routes, in the STOP/RELEASE states, it will
|
|
|
f9ed25 |
+check for the existence of an executable
|
|
|
f9ed25 |
+.B ETCDIR/dhclient-down-hooks
|
|
|
f9ed25 |
+script, and source it if found. This script can handle DHCP options in
|
|
|
f9ed25 |
+the environment that are not handled by default. A per-interface
|
|
|
f9ed25 |
+.B ETCDIR/dhclient-${IF}-down-hooks
|
|
|
f9ed25 |
+script will override the generic script and be sourced when interface
|
|
|
f9ed25 |
+$IF is about to be brought down.
|
|
|
f9ed25 |
.SH OPERATION
|
|
|
f9ed25 |
When dhclient needs to invoke the client configuration script, it
|
|
|
f9ed25 |
defines a set of variables in the environment, and then invokes
|
|
|
f9ed25 |
diff --git a/client/dhclient.conf.5 b/client/dhclient.conf.5
|
|
|
f9ed25 |
index fa3b908..566a881 100644
|
|
|
f9ed25 |
--- a/client/dhclient.conf.5
|
|
|
f9ed25 |
+++ b/client/dhclient.conf.5
|
|
|
f9ed25 |
@@ -228,7 +228,8 @@ responding to the client send the client its values for the specified
|
|
|
f9ed25 |
options. Only the option names should be specified in the request
|
|
|
f9ed25 |
statement - not option parameters. By default, the DHCPv4 client
|
|
|
f9ed25 |
requests the subnet-mask, broadcast-address, time-offset, routers,
|
|
|
f9ed25 |
-domain-name, domain-name-servers and host-name options while the DHCPv6
|
|
|
f9ed25 |
+domain-search, domain-name, domain-name-servers, host-name, nis-domain,
|
|
|
f9ed25 |
+nis-servers, ntp-servers and interface-mtu options while the DHCPv6
|
|
|
f9ed25 |
client requests the dhcp6 name-servers and domain-search options. Note
|
|
|
f9ed25 |
that if you enter a \'request\' statement, you over-ride these defaults
|
|
|
f9ed25 |
and these options will not be requested.
|
|
|
f9ed25 |
@@ -735,6 +736,17 @@ broadcast packets transmitted by DHCP clients, but is only useful if you
|
|
|
f9ed25 |
know the DHCP service(s) anycast MAC address prior to configuring your
|
|
|
f9ed25 |
client. The \fIlink-type\fR and \fImac-address\fR parameters are configured
|
|
|
f9ed25 |
in a similar manner to the \fBhardware\fR statement.
|
|
|
f9ed25 |
+.PP
|
|
|
f9ed25 |
+ \fBbootp-broadcast-always;\fR
|
|
|
f9ed25 |
+.PP
|
|
|
f9ed25 |
+The
|
|
|
f9ed25 |
+.B bootp-broadcast-always
|
|
|
f9ed25 |
+statement instructs dhclient to always set the bootp broadcast flag in
|
|
|
f9ed25 |
+request packets, so that servers will always broadcast replies.
|
|
|
f9ed25 |
+This is equivalent to supplying the dhclient -B argument, and has
|
|
|
f9ed25 |
+the same effect as specifying 'always-broadcast' in the server's dhcpd.conf.
|
|
|
f9ed25 |
+This option is provided as an extension to enable dhclient to work
|
|
|
f9ed25 |
+on IBM s390 Linux guests.
|
|
|
f9ed25 |
.PP
|
|
|
f9ed25 |
.SH SAMPLE
|
|
|
f9ed25 |
The following configuration file was used on a laptop running NetBSD
|
|
|
f9ed25 |
diff --git a/common/dhcp-options.5 b/common/dhcp-options.5
|
|
|
f9ed25 |
index 33d4804..d9e1197 100644
|
|
|
f9ed25 |
--- a/common/dhcp-options.5
|
|
|
f9ed25 |
+++ b/common/dhcp-options.5
|
|
|
f9ed25 |
@@ -1068,6 +1068,21 @@ classless IP routing - it does not include a subnet mask. Since
|
|
|
f9ed25 |
classless IP routing is now the most widely deployed routing standard,
|
|
|
f9ed25 |
this option is virtually useless, and is not implemented by any of the
|
|
|
f9ed25 |
popular DHCP clients, for example the Microsoft DHCP client.
|
|
|
f9ed25 |
+.PP
|
|
|
f9ed25 |
+NOTE to Fedora dhclient users:
|
|
|
f9ed25 |
+.br
|
|
|
f9ed25 |
+dhclient-script interprets trailing 0 octets of the target as indicating
|
|
|
f9ed25 |
+the subnet class of the route, so for the following static-routes value:
|
|
|
f9ed25 |
+.br
|
|
|
f9ed25 |
+ option static-routes 172.0.0.0 172.16.2.254,
|
|
|
f9ed25 |
+.br
|
|
|
f9ed25 |
+ 192.168.0.0 192.168.2.254;
|
|
|
f9ed25 |
+.br
|
|
|
f9ed25 |
+dhclient-script will create routes:
|
|
|
f9ed25 |
+.br
|
|
|
f9ed25 |
+ 172/8 via 172.16.2.254 dev $interface
|
|
|
f9ed25 |
+.br
|
|
|
f9ed25 |
+ 192.168/16 via 192.168.2.254 dev $interface
|
|
|
f9ed25 |
.RE
|
|
|
f9ed25 |
.PP
|
|
|
f9ed25 |
.nf
|
|
|
f9ed25 |
diff --git a/server/dhcpd.conf.5 b/server/dhcpd.conf.5
|
|
|
f9ed25 |
index 17330d4..89b5540 100644
|
|
|
f9ed25 |
--- a/server/dhcpd.conf.5
|
|
|
f9ed25 |
+++ b/server/dhcpd.conf.5
|
|
|
f9ed25 |
@@ -527,6 +527,9 @@ pool {
|
|
|
f9ed25 |
};
|
|
|
f9ed25 |
.fi
|
|
|
f9ed25 |
.PP
|
|
|
f9ed25 |
+Dynamic BOOTP leases are not compatible with failover, and, as such,
|
|
|
f9ed25 |
+you need to disallow BOOTP in pools that you are using failover for.
|
|
|
f9ed25 |
+.PP
|
|
|
f9ed25 |
The server currently does very little sanity checking, so if you
|
|
|
f9ed25 |
configure it wrong, it will just fail in odd ways. I would recommend
|
|
|
f9ed25 |
therefore that you either do failover or don't do failover, but don't
|
|
|
f9ed25 |
@@ -541,9 +544,9 @@ primary server might look like this:
|
|
|
f9ed25 |
failover peer "foo" {
|
|
|
f9ed25 |
primary;
|
|
|
f9ed25 |
address anthrax.rc.example.com;
|
|
|
f9ed25 |
- port 519;
|
|
|
f9ed25 |
+ port 647;
|
|
|
f9ed25 |
peer address trantor.rc.example.com;
|
|
|
f9ed25 |
- peer port 520;
|
|
|
f9ed25 |
+ peer port 847;
|
|
|
f9ed25 |
max-response-delay 60;
|
|
|
f9ed25 |
max-unacked-updates 10;
|
|
|
f9ed25 |
mclt 3600;
|
|
|
f9ed25 |
@@ -1323,7 +1326,7 @@ the zone containing PTR records - for ISC BIND, something like this:
|
|
|
f9ed25 |
.PP
|
|
|
f9ed25 |
.nf
|
|
|
f9ed25 |
key DHCP_UPDATER {
|
|
|
f9ed25 |
- algorithm HMAC-MD5.SIG-ALG.REG.INT;
|
|
|
f9ed25 |
+ algorithm hmac-md5;
|
|
|
f9ed25 |
secret pRP5FapFoJ95JEL06sv4PQ==;
|
|
|
f9ed25 |
};
|
|
|
f9ed25 |
|
|
|
f9ed25 |
@@ -1346,7 +1349,7 @@ dhcpd.conf file:
|
|
|
f9ed25 |
.PP
|
|
|
f9ed25 |
.nf
|
|
|
f9ed25 |
key DHCP_UPDATER {
|
|
|
f9ed25 |
- algorithm HMAC-MD5.SIG-ALG.REG.INT;
|
|
|
f9ed25 |
+ algorithm hmac-md5;
|
|
|
f9ed25 |
secret pRP5FapFoJ95JEL06sv4PQ==;
|
|
|
f9ed25 |
};
|
|
|
f9ed25 |
|
|
|
f9ed25 |
@@ -2912,7 +2915,8 @@ statement
|
|
|
f9ed25 |
The \fInext-server\fR statement is used to specify the host address of
|
|
|
f9ed25 |
the server from which the initial boot file (specified in the
|
|
|
f9ed25 |
\fIfilename\fR statement) is to be loaded. \fIServer-name\fR should
|
|
|
f9ed25 |
-be a numeric IP address or a domain name.
|
|
|
f9ed25 |
+be a numeric IP address or a domain name. If no \fInext-server\fR statement
|
|
|
f9ed25 |
+applies to a given client, the address 0.0.0.0 is used.
|
|
|
f9ed25 |
.RE
|
|
|
f9ed25 |
.PP
|
|
|
f9ed25 |
The
|
|
|
f9ed25 |
--
|
|
|
f9ed25 |
2.14.5
|
|
|
f9ed25 |
|