(I'm not sure if this is the best way to explain this, so if it is confusing I apologize..) (dnsmasq 2.86 should it matter)
I have a conf-file setting to include dhcp settings vs dnsmasq settings.. listen-address, user, group, logfacility, no-hosts, no-poll, no-resolv (dnsmasq settings) then for dhcp settings.. dhcp-ignore=tag:!known dhcp-authorative dhcp-no-override dhcp-generate-names dhcp-fqdn (other global dhcp options) dhcp-option=option:ntp-server,0.0.0.0 dhcp-option=option:tzdb-timezone,"America/New_York" dhcp-option=option:log-server,10.20.0.16 dhcp-option=option:dns-server,10.20.0.43,10.20.32.100 then conf-file entries for defined ranges (for example) conf-file=/etc/dnsmasq.d/dnsmasq.red.dhcp # 10.20.32/20 conf-file=/etc/dnsmasq.d/dnsmasq.blue.dhcp # 10.20.16/20 dnsmasq.red.dhcp then defines global defaults for the red range.. domain=red.dns,10.20.0.0/20 dhcp-range=red,10.20.12.1,10.20.14.254,255.255.240.0,4h dhcp-option=red,option:router,10.20.0.1 # Gateway dhcp-option=red,option:domain-name,red.dns # Domain dnsmasq.blue.dhcp defines options for the blue range.. domain=blue.dns,10.20.16.0/20 dhcp-range=blue,10.20.28.1,10.20.30.254,255.255.240.0,4h dhcp-option=blue,option:router,10.20.16.1 # Gateway dhcp-option=blue,option:domain-name,blue.dns # Domain etc.. in each red, orange, yellow, green, blue, etc range (buildings) there are hosts defined to allow dhcp.. because of the initial dhcp-ignore=tag:!known definition at the top of the include.. Defining a host in red does not give them access to blue building, etc.. all of this is fine and working; and if the above is clear below is my problem to which I am looking for a possible solution.. We are adding a bunch of new Netgate devices at each building, apparently pfsense 2.6.0 does not do dhcpd and dhcp-relay on the same device it is one or the other.. Netgate 6100 fwiw, pfsense+ DHCP Relay is currently enabled. DHCP Server canot be enabled while the DHCP Relay is enabled on any interface. So just now hitting this wall; and the only (quick solution) pfsense option is to dhcp-relay all vlans from buildings, red, orange, yellow, etc.. so this main single dnsmasq with the dhcp-ignore=tag:!known defined.. Is there a way to define another range and "dis-inherit" the !known tag? (for example) conf-file=/etc/dnsmasq.d/dnsmasq.red.clear.dhcp # 10.120.36/24 domain=red-clear.dns,10.120.36.0/24 dhcp-range=red-clear,10.120.36.100,10.120.36.200,255.255.240.0,4h dhcp-option=red-clear,option:router,10.120.36.254 # Gateway dhcp-option=red-clear,option:domain-name,red-clear.dns # Domain and then *not* have to manually assign each host I want to allow in this range? Is that possible? >From the man page which talks about the --dhcp-ignore=tag:!known, I cannot figure out how to 'undo it' for a range.. (as I have not defined it for red, orange, yellow, etc.. I cannot seem to undefine or not define it for red-clear, orange-clear, etc.. ) Or is the answer to have a new entry: dhcp-ignore=red,orange,yellow,tag:!known Thank you in advance for taking the time to read this.. _______________________________________________ Dnsmasq-discuss mailing list Dnsmasq-discuss@lists.thekelleys.org.uk https://lists.thekelleys.org.uk/cgi-bin/mailman/listinfo/dnsmasq-discuss
