> >On a related question, is it possible to get the hostname of a computer > >that has a DHCP lease from outside the firewall? > > > I don't quite understand the question. What do you mean by "get the > hostname"? Do you mean do something analogous to a reverse lookup in DNS > (submit the IP address and get an FQN in response)?
Exactly.
> To the best of my understanding, DNCP servers have no provision for
> responding to that sort of request. What you can do, in principle, is use
> the information in dhcpd.leases to update DNS records. You'd do this,
> probably, with a script that runs periodically via crond, checks the leases
> file, and uses any host-provided hostname info in it to update the DNS
> records. I haven't seen such a script or program around, but it's not hard
> in concept, though the limitations of LEAF (lack of a nice scripting
> language like Perl, mainly) may make it a bit trickier than I'm allowing for.
Also exactly! :)
I could even process the dhcp.leases off-firewall, but I have no way of transferring the file off of the LEAF firewall (Bering 1.2), and am not real excited about adding one...
> This assumes, of course, that authoritative DNS for the LAN is running on
> the same host as the DHCP server (or that some suitable network access,
> perhaps NFS or SMB, lets the DNS server read the leases file on the DHCP
> server).
It is, but my use is for a Web traffic monitoring application (which I will write more about soon: the project is supposed to be finished tomorrow). I just need a way to accurately turn IP addresses into either MAC or hostnames (or both). The DHCP server has the authoritative info on that, but I can't figure out how to get to it.
> Why would you want to communicate information about LAN hosts to a host
> outside the firewall? Surely not for general-purpose access ... that makes
> no sense in a NAT'd setting, and even if the LAN hosts have public
> addresses, you usually want to firewall them to limit off-site access to
> them. If you want to do this for a special, privileged off-site host (say
> one you are using for remote management), using some sort of encrypted
> tunnel to transfer the dhcpd.leases file seems like a more natural solution.
No, an inside host. I just have no secure way of getting the dhcp.leases file off-firewall. I was hoping there was a dig for DHCP... :)
Tim Massey
------------------------------------------------------- The SF.Net email is sponsored by EclipseCon 2004 Premiere Conference on Open Tools Development and Integration See the breadth of Eclipse activity. February 3-5 in Anaheim, CA. http://www.eclipsecon.org/osdn ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
