Re: [Kea-users] yet another question about multiple subnets %)

[3]

> May I suggest you continue this discussion privately with an ISC team member 
> rather than on a public mailing list? Your sarcasm and very aggressive tone 
> are not exactly appropriate and I don't think all members have to witness 
> your personal rant against a software you dislike. Thanks.
yes, maybe you're right and everyone should adjust to you instead of to create 
a rule in your email client that will notify only about messages that are 
addressed to you, as, for example, i did. but i'm just a barbarian, what can i 
know about the culture of white people? you probably know more about this since 
you use the html format in the maillist

-- 
ISC funds the development of this software with paid support subscriptions. 
Contact us at https://www.isc.org/contact/ for more information.

To unsubscribe visit https://lists.isc.org/mailman/listinfo/kea-users.

Kea-users mailing list
Kea-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/kea-users

Re: [Kea-users] yet another question about multiple subnets %)

[Olivier Clavel]

May I suggest you continue this discussion privately with an ISC team
member rather than on a public mailing list? Your sarcasm and very
aggressive tone are not exactly appropriate and I don't think all members
have to witness your personal rant against a software you dislike. Thanks.

Le ven. 18 nov. 2022 à 10:52, 3  a écrit :

> > As Simon has previously   pointed out a number of times, a client
> must send multiple IA_NA’s in a request to get multiple addresses. This is
> discussed in section 6.6 Multiple Addresses and Prefixes of RFC8415 (
> https://datatracker.ietf.org/doc/rfc8415/)
> > As per the Kea documentation, you can find the specific reference to how
> we handle Multiple Addresses with Host Reservations in this section in the
> ARM:
> https://kea.readthedocs.io/en/kea-2.2.0/arm/dhcp6-srv.html#host-reservations-in-dhcpv6
>
> is it possible to simply give a working server's config in which there
> will be two pools on the same interface, from which the server will
> simultaneously assign an addresses? it's hard to blame the client for
> anything when you're not sure it's not the server problem.
> i still did not understand from the rfc whether the client should send
> several messages with one IA_NA in each or should send one message with
> several IA_NA in it. after all, there is an IAID field, and nothing
> prevents from sending multiple IA_NAS in one message. well, i think so.
> what rfc8415 thinks about this remains a mystery.
> does any dhcp client know how to do this? i want to see it live.
>
> > DHCPv6 allows a single client to lease multiple addresses and multiple
> prefixes at the same time. Therefore ip-addresses and prefixes are plural
> and are actually arrays. When the client sends multiple IA options (IA_NA
> or IA_PD), each reserved address or prefix is assigned to an individual IA
> of the appropriate type. If the number of IAs of a specific type is lower
> than the number of reservations of that type, the number of reserved
> addresses or prefixes assigned to the client is equal to the number of
> IA_NAs or IA_PDs sent by the client; that is, some reserved addresses or
> prefixes are not assigned. However, they still remain reserved for this
> client and the server will not assign them to any other client. If the
> number of IAs of a specific type sent by the client is greater than the
> number of reserved addresses or prefixes, the server will try to assign all
> reserved addresses or prefixes to the individual IAs and dynamically
> allocate addresses or prefixes to the remaining IAs. If the server cannot
> assign a reserved address or prefix because it is in use, the server will
> select the next reserved address or prefix and try to assign it to the
> client. If the server subsequently finds that there are no more
> reservations that can be assigned to the client at that moment, the server
> will try to assign leases dynamically.
>
> from your explanation, it turns out that if the client does not have a
> reservation on the server, in which several addresses are specified, then
> he will not receive several addresses, i.e. having a dhcp server, we have
> returned to manually assigning addresses to each clients via dhcp server?
> please do not use complex language constructions, as i do not know english
> well and am confused. what i have read is terrible and simply cannot be
> true.
>
> ps: and now a few words about life. who came up with this? who came up
> with the concept in which a client who has just hatched from an egg should
> request something from a world about which he knows nothing?! what is the
> name of the person responsible for this? the world should know its heroes!
> i will tell everyone who is responsible for the collapse of human
> civilization! this reptilian who flew to us with a mission to destroy
> humanity should be dismissed immediately!
> it was a very simple task, it couldn't be simpler, we face such a task
> every day in our lives, and its solution is simple and typical. but your
> team managed to screw up even in this! humanity is doomed if it is led by
> such T_T
> ..a joke, of course, but in every joke there is only a fraction of a joke
> :\
>
> --
> ISC funds the development of this software with paid support
> subscriptions. Contact us at https://www.isc.org/contact/ for more
> information.
>
> To unsubscribe visit https://lists.isc.org/mailman/listinfo/kea-users.
>
> Kea-users mailing list
> Kea-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/kea-users
>
-- 
ISC funds the development of this software with paid support subscriptions. 
Contact us at https://www.isc.org/contact/ for more information.

To unsubscribe visit https://lists.isc.org/mailman/listinfo/kea-users.

Kea-users mailing list
Kea-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/kea-users

Re: [Kea-users] How to best update the KEA configuration on a HA hot-standby KEA setup

[Dan Oachs]

I am running Kea on RockyLinux8 and RHEL8.  For those systems I usually run
"service kea-dhcp4 reload" and "service kea-dhcp6 reload" anytime I update
the .json configuration files.  And as far as I can tell, when I do that
there are no DHCP replies from the server for 10-20 seconds.  Or at least
nothing is logged during that time.  I have not looked at that very closely
as reloading the Kea service is not very common for us now that it is all
up and running.

--Dan


On Fri, Nov 18, 2022 at 2:24 AM Veronique Lefebure <
veronique.lefeb...@cern.ch> wrote:

> Many thanks for these interesting hints!
> A last question then: how do you notify KEA processes (kea-dhcp4,
> kea-dhcp6) in case you modify any of you json files ? with a "reload"
> command ?
> Thanks,
> Veronique
> --
> *From:* Dan Oachs 
> *Sent:* Thursday, November 17, 2022 8:36 PM
> *To:* Veronique Lefebure 
> *Cc:* kea-users@lists.isc.org 
> *Subject:* Re: [Kea-users] How to best update the KEA configuration on a
> HA hot-standby KEA setup
>
> The great thing about Kea is that it is very flexible and you can make it
> work in a wide variety of ways and find the setup that works best for your
> situation.
>
> In our case we have a hybrid setup.  The kea-dhcp4.conf file has all the
> global settings, and we define the hosts-database for storing host
> reservations.  We also break out all the subnet config into a separate
> subnets.json file and have the main file include that.
>
> We update the database directly from our own registration system, which is
> not recommended, but works fo us.  We chose not to pay for the host
> commands hook library that is required to use the api example you
> mentioned.
>
> I am pretty sure that you can do almost everything in the database that
> you can do in the config file, but are only using the database to store the
> host information.  I do see tables in the database that start with
> dhcp4_client_class which would lead me to believe that you can do what you
> want with the database configuration.
>
> --Dan
>
>
> On Thu, Nov 17, 2022 at 9:48 AM Veronique Lefebure <
> veronique.lefeb...@cern.ch> wrote:
>
> Thanks Dan!
>
>
> So you have a hybrid configuration ?
> What do you mean by "main configuration" ? Topology (shared-networks and
> subnets) in json file and host-reservations in a database ?
> Do you update the database using "reservation-add"  (
> https://kea.readthedocs.io/en/latest/api.html?highlight=host%20reservation#reservation-add
>  )
> ?
>
> We have client classes with a test expression that depends on the mac
> addresses of the clients.
> Can these classes be stored in the database as well ?
>
> Thanks,
> Veronique
>
>
> --
> *From:* Dan Oachs 
> *Sent:* Thursday, November 17, 2022 4:20 PM
> *To:* Veronique Lefebure 
> *Cc:* kea-users@lists.isc.org 
> *Subject:* Re: [Kea-users] How to best update the KEA configuration on a
> HA hot-standby KEA setup
>
> We also have all the main configuration in plain json files.  Like you, we
> require hosts on some of our networks to be registered.  Our registration
> system stores the MAC addresses in the Kea database.  For the past year or
> so, this has worked really well for us.
>
> I would highly suggest looking into storing the MAC addresses in a
> database so you don't need to reload kea for every change.  You don't need
> to use the database for anything else if you don't want to.   This can also
> be done without any of the extra hook libraries that cost money.
>
> --Dan
>
>
>
> On Thu, Nov 17, 2022 at 2:19 AM Veronique Lefebure <
> veronique.lefeb...@cern.ch> wrote:
>
> Hi,
>
> We don't use any database for storing the KEA configuration: we use plain
> json configuration files.
> We need to update the configuration very regularly because we allow only
> known clients (pre-registered mac addresses), hence the list of
> host-reservations is quite volatile.
>
> Véronique
> --
> *From:* Dan Oachs 
> *Sent:* Wednesday, November 16, 2022 6:31 PM
> *To:* Veronique Lefebure 
> *Cc:* kea-users@lists.isc.org 
> *Subject:* Re: [Kea-users] How to best update the KEA configuration on a
> HA hot-standby KEA setup
>
> I am curious why you are updating the config every 5 minutes.   We used to
> do that with our old DHCP server, but with Kea we moved to storing
> reservations in a database.  That way we rarely need to make changes to the
> actual Kea configuration that would necessitate a reload of the config.
>
> --Dan
>
>
> On Wed, Nov 16, 2022 at 10:27 AM Veronique Lefebure <
> veronique.lefeb...@cern.ch> wrote:
>
> Hi,
>
> When running KEA on one single server, (no HA), and updating the KEA dhcp
> configuration file every 5 minute, using "config-set"
>
> https://kea.readthedocs.io/en/latest/arm/ctrl-channel.html?highlight=config-set#the-config-set-command
>  ,
> we can see that KEA does not reply to the DHCP requests during 30-35
> seconds while "config-set" is running.
>
> Is it 

Re: [Kea-users] yet another question about multiple subnets %)

[3]

> As Simon has previously   pointed out a number of times, a client must 
> send multiple IA_NA’s in a request to get multiple addresses. This is 
> discussed in section 6.6 Multiple Addresses and Prefixes of RFC8415 
> (https://datatracker.ietf.org/doc/rfc8415/)
> As per the Kea documentation, you can find the specific reference to how we 
> handle Multiple Addresses with Host Reservations in this section in the ARM: 
> https://kea.readthedocs.io/en/kea-2.2.0/arm/dhcp6-srv.html#host-reservations-in-dhcpv6

is it possible to simply give a working server's config in which there will be 
two pools on the same interface, from which the server will simultaneously 
assign an addresses? it's hard to blame the client for anything when you're not 
sure it's not the server problem.
i still did not understand from the rfc whether the client should send several 
messages with one IA_NA in each or should send one message with several IA_NA 
in it. after all, there is an IAID field, and nothing prevents from sending 
multiple IA_NAS in one message. well, i think so. what rfc8415 thinks about 
this remains a mystery.
does any dhcp client know how to do this? i want to see it live.

> DHCPv6 allows a single client to lease multiple addresses and multiple 
> prefixes at the same time. Therefore ip-addresses and prefixes are plural and 
> are actually arrays. When the client sends multiple IA options (IA_NA or 
> IA_PD), each reserved address or prefix is assigned to an individual IA of 
> the appropriate type. If the number of IAs of a specific type is lower than 
> the number of reservations of that type, the number of reserved addresses or 
> prefixes assigned to the client is equal to the number of IA_NAs or IA_PDs 
> sent by the client; that is, some reserved addresses or prefixes are not 
> assigned. However, they still remain reserved for this client and the server 
> will not assign them to any other client. If the number of IAs of a specific 
> type sent by the client is greater than the number of reserved addresses or 
> prefixes, the server will try to assign all reserved addresses or prefixes to 
> the individual IAs and dynamically allocate addresses or prefixes to the 
> remaining IAs. If the server cannot assign a reserved address or prefix 
> because it is in use, the server will select the next reserved address or 
> prefix and try to assign it to the client. If the server subsequently finds 
> that there are no more reservations that can be assigned to the client at 
> that moment, the server will try to assign leases dynamically.

from your explanation, it turns out that if the client does not have a 
reservation on the server, in which several addresses are specified, then he 
will not receive several addresses, i.e. having a dhcp server, we have returned 
to manually assigning addresses to each clients via dhcp server? please do not 
use complex language constructions, as i do not know english well and am 
confused. what i have read is terrible and simply cannot be true.

ps: and now a few words about life. who came up with this? who came up with the 
concept in which a client who has just hatched from an egg should request 
something from a world about which he knows nothing?! what is the name of the 
person responsible for this? the world should know its heroes! i will tell 
everyone who is responsible for the collapse of human civilization! this 
reptilian who flew to us with a mission to destroy humanity should be dismissed 
immediately!
it was a very simple task, it couldn't be simpler, we face such a task every 
day in our lives, and its solution is simple and typical. but your team managed 
to screw up even in this! humanity is doomed if it is led by such T_T
..a joke, of course, but in every joke there is only a fraction of a joke :\

-- 
ISC funds the development of this software with paid support subscriptions. 
Contact us at https://www.isc.org/contact/ for more information.

To unsubscribe visit https://lists.isc.org/mailman/listinfo/kea-users.

Kea-users mailing list
Kea-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/kea-users

Re: [Kea-users] How to best update the KEA configuration on a HA hot-standby KEA setup

[Veronique Lefebure]

Many thanks for these interesting hints!
A last question then: how do you notify KEA processes (kea-dhcp4, kea-dhcp6) in 
case you modify any of you json files ? with a "reload" command ?
Thanks,
Veronique

From: Dan Oachs 
Sent: Thursday, November 17, 2022 8:36 PM
To: Veronique Lefebure 
Cc: kea-users@lists.isc.org 
Subject: Re: [Kea-users] How to best update the KEA configuration on a HA 
hot-standby KEA setup

The great thing about Kea is that it is very flexible and you can make it work 
in a wide variety of ways and find the setup that works best for your situation.

In our case we have a hybrid setup.  The kea-dhcp4.conf file has all the global 
settings, and we define the hosts-database for storing host reservations.  We 
also break out all the subnet config into a separate subnets.json file and have 
the main file include that.

We update the database directly from our own registration system, which is not 
recommended, but works fo us.  We chose not to pay for the host commands hook 
library that is required to use the api example you mentioned.

I am pretty sure that you can do almost everything in the database that you can 
do in the config file, but are only using the database to store the host 
information.  I do see tables in the database that start with 
dhcp4_client_class which would lead me to believe that you can do what you want 
with the database configuration.

--Dan


On Thu, Nov 17, 2022 at 9:48 AM Veronique Lefebure 
mailto:veronique.lefeb...@cern.ch>> wrote:
Thanks Dan!


So you have a hybrid configuration ?
What do you mean by "main configuration" ? Topology (shared-networks and 
subnets) in json file and host-reservations in a database ?
Do you update the database using "reservation-add"  
(https://kea.readthedocs.io/en/latest/api.html?highlight=host%20reservation#reservation-add
 ) ?

We have client classes with a test expression that depends on the mac addresses 
of the clients.
Can these classes be stored in the database as well ?

Thanks,
Veronique



From: Dan Oachs mailto:doa...@gac.edu>>
Sent: Thursday, November 17, 2022 4:20 PM
To: Veronique Lefebure 
mailto:veronique.lefeb...@cern.ch>>
Cc: kea-users@lists.isc.org 
mailto:kea-users@lists.isc.org>>
Subject: Re: [Kea-users] How to best update the KEA configuration on a HA 
hot-standby KEA setup

We also have all the main configuration in plain json files.  Like you, we 
require hosts on some of our networks to be registered.  Our registration 
system stores the MAC addresses in the Kea database.  For the past year or so, 
this has worked really well for us.

I would highly suggest looking into storing the MAC addresses in a database so 
you don't need to reload kea for every change.  You don't need to use the 
database for anything else if you don't want to.   This can also be done 
without any of the extra hook libraries that cost money.

--Dan



On Thu, Nov 17, 2022 at 2:19 AM Veronique Lefebure 
mailto:veronique.lefeb...@cern.ch>> wrote:
Hi,

We don't use any database for storing the KEA configuration: we use plain json 
configuration files.
We need to update the configuration very regularly because we allow only known 
clients (pre-registered mac addresses), hence the list of host-reservations is 
quite volatile.

Véronique

From: Dan Oachs mailto:doa...@gac.edu>>
Sent: Wednesday, November 16, 2022 6:31 PM
To: Veronique Lefebure 
mailto:veronique.lefeb...@cern.ch>>
Cc: kea-users@lists.isc.org 
mailto:kea-users@lists.isc.org>>
Subject: Re: [Kea-users] How to best update the KEA configuration on a HA 
hot-standby KEA setup

I am curious why you are updating the config every 5 minutes.   We used to do 
that with our old DHCP server, but with Kea we moved to storing reservations in 
a database.  That way we rarely need to make changes to the actual Kea 
configuration that would necessitate a reload of the config.

--Dan


On Wed, Nov 16, 2022 at 10:27 AM Veronique Lefebure 
mailto:veronique.lefeb...@cern.ch>> wrote:
Hi,

When running KEA on one single server, (no HA), and updating the KEA dhcp 
configuration file every 5 minute, using "config-set"
https://kea.readthedocs.io/en/latest/arm/ctrl-channel.html?highlight=config-set#the-config-set-command
 ,
we can see that KEA does not reply to the DHCP requests during 30-35 seconds 
while "config-set" is running.

Is it expected ?
If yes, if we add a second server in a HA hot-standby mode, can we expect it to 
answer to the DHCP requests while the first server is busy with config-set ?
If yes, we need to update the second server asynchronously with respect to the 
first one, else they would both be busy with "config-set" at the same time.

I would be interested to know how people are updating the KEA DHCP 
configuration in a HA hot-standby setup.

Thanks,
Veronique

--
ISC funds the development of this software with