Re: [OpenIndiana-discuss] isc-dhcp client
2012-09-06 18:23, Gary Mills пишет: On Thu, Sep 06, 2012 at 10:06:15AM -0400, Gary Gendel wrote: Whoops! Make that I was wondering if I should include the client. I guessed that was it. I'd expect the client to be in a separate package since it should replace `dhcpagent' and possibly `dhcpinfo' and `in.ndpd', and might require changes to the SMF services that start them. As well, all OI machines will require the client but only a few will require the server. Also consider local zones which might be using DHCP clients during their lifetime and/or from the initial startup for installation/set-up; this might be or not be covered by the same SMF changes as for the global zone (some SMF scripts have special if's/case's for local zones, and that is not always made logical for today's implementation of zones). //Jim Klimov ___ OpenIndiana-discuss mailing list OpenIndiana-discuss@openindiana.org http://openindiana.org/mailman/listinfo/openindiana-discuss
Re: [OpenIndiana-discuss] isc-dhcp client
Actually, since I'm only interested in prefix delegation, I tried an experiment. My external nic is bge0 and my internal nic is bge1. I have ipfilter set up currently to allow everything on ipv6: pass in on any all pass out on any all When I start dhclient to get the address block from the DHCPv6 server: dhclient -6 -P -v bge0 I fail with a No route to host message. The full output is: Internet Systems Consortium DHCP Client 4.2.4-P1 Copyright 2004-2012 Internet Systems Consortium. All rights reserved. For info, please visit https://www.isc.org/software/dhcp/ execve (/sbin/dhclient-script, ...): No such file or directory Bound to *:546 Listening on Socket/bge0 Sending on Socket/bge0 PRC: Soliciting for leases (INIT). XMT: Forming Solicit, 0 ms elapsed. XMT: X-- IA_PD 3d:13:03:a3 XMT: | X-- Request renew in +3600 XMT: | X-- Request rebind in +5400 XMT: Solicit on bge0, interval 1010ms. send_packet6: No route to host dhc6: send_packet6() sent -1 of 52 bytes It fails on a sendmsg() call to a socket that's opened for broadcast. Is this something I'm doing wrong in ipfilter or am I missing something else? For example, do I need to set up a logical or virtual nic on bge0? Gary On 9/6/12 10:23 AM, Gary Mills wrote: On Thu, Sep 06, 2012 at 10:06:15AM -0400, Gary Gendel wrote: Whoops! Make that I was wondering if I should include the client. I guessed that was it. I'd expect the client to be in a separate package since it should replace `dhcpagent' and possibly `dhcpinfo' and `in.ndpd', and might require changes to the SMF services that start them. As well, all OI machines will require the client but only a few will require the server. ___ OpenIndiana-discuss mailing list OpenIndiana-discuss@openindiana.org http://openindiana.org/mailman/listinfo/openindiana-discuss
Re: [OpenIndiana-discuss] isc-dhcp client
On 09/07/12 09:12, Gary Gendel wrote: I fail with a No route to host message. The full output is: No route to host typically means that the routing table has trouble, not that there's anything wrong with IP Filter. At a guess, you may need to do this: ifconfig inet6 bge0 plumb up Is this something I'm doing wrong in ipfilter or am I missing something else? For example, do I need to set up a logical or virtual nic on bge0? DHCPv6 is a very different beast from IPv4 DHCP. For one thing, it operates entirely at the UDP level over regular IPv6 interfaces, while IPv4 DHCP implementation typically requires special tricks to be able to send and receive UDP/IP messages without having the IP interface configured. -- James Carlson 42.703N 71.076W carls...@workingcode.com ___ OpenIndiana-discuss mailing list OpenIndiana-discuss@openindiana.org http://openindiana.org/mailman/listinfo/openindiana-discuss
Re: [OpenIndiana-discuss] isc-dhcp client
On 6 September 2012 02:51, Bob Friesenhahn bfrie...@simple.dallas.tx.us wrote: On Wed, 5 Sep 2012, Gary Gendel wrote: snip If the answer is that I should be able to replace it, the next question is if anyone has done this before and how difficult this would be to do. I assume you are talking about the client and not the server? If you are talking about the client, then it seems possible to do this via an upgrade. If you are talking about the server, unless the ISC version is truely a drop-in replacement, it would be best to make it an add-on package using different directories so that it is possible to migrate from one to the other and not crater users networks due to an update. As Gordon Ross mentions, the Sun dhcp server has nice integration with a dhcpmgr GUI (which I use under Solaris 10). (All following comments are about the DHCP server) I happened to hate the GUI that came with the DHCP server, and always relied on the dhtadm and pntadm commands ... I assume that the ISC version will not use these commands, and will probably not be able to talk to the same datastores as the Sun version ... if the commands are different, or the datastores are not accessible/convertible then I would advise against replacing the Sun server with the ISC server, but look instead to changing the svc:/network/dhcp-server:default to svc:/network/dhcp-server:oracle and creating a new ISC svc:/network/dhcp-server:isc or something similar. If the ISC is not a drop in replacement and someone upgrades they will find that their server no longer works, and being a DHCP server will find that their network also no longer works. Jon ___ OpenIndiana-discuss mailing list OpenIndiana-discuss@openindiana.org http://openindiana.org/mailman/listinfo/openindiana-discuss
Re: [OpenIndiana-discuss] isc-dhcp client
Jon, Oracle is deprecating the Sun dhcp server and replacing it with ISC based upon what I've been reading. It's one of the reasons that Oracle pushed changes to the ISC source. Regardless, I have no reason to replace the server since it has everything I need in a dhcp server. Others don't agree. That said, the Oracle client is missing IPV6 prefix delegation which is a hole for me and will become for more people that have ISPs that use this feature to assign blocks of ipv6 IPs. Without this, you will only get a single IP address from these ISPs. Since ipv6 does not support NAT there is no alternative if you want to use OpenIndiana as a firewall/router. There are firewall/router boxes that do perform this function. DD-WRT and similar do have an implementation but it is very buggy. I currently get around this by using an ipv6 over ipv4 tunnel to HE, but this not a good final solution. Gary On 9/6/12 9:13 AM, Jonathan Adams wrote: On 6 September 2012 02:51, Bob Friesenhahn bfrie...@simple.dallas.tx.us wrote: On Wed, 5 Sep 2012, Gary Gendel wrote: snip If the answer is that I should be able to replace it, the next question is if anyone has done this before and how difficult this would be to do. I assume you are talking about the client and not the server? If you are talking about the client, then it seems possible to do this via an upgrade. If you are talking about the server, unless the ISC version is truely a drop-in replacement, it would be best to make it an add-on package using different directories so that it is possible to migrate from one to the other and not crater users networks due to an update. As Gordon Ross mentions, the Sun dhcp server has nice integration with a dhcpmgr GUI (which I use under Solaris 10). (All following comments are about the DHCP server) I happened to hate the GUI that came with the DHCP server, and always relied on the dhtadm and pntadm commands ... I assume that the ISC version will not use these commands, and will probably not be able to talk to the same datastores as the Sun version ... if the commands are different, or the datastores are not accessible/convertible then I would advise against replacing the Sun server with the ISC server, but look instead to changing the svc:/network/dhcp-server:default to svc:/network/dhcp-server:oracle and creating a new ISC svc:/network/dhcp-server:isc or something similar. If the ISC is not a drop in replacement and someone upgrades they will find that their server no longer works, and being a DHCP server will find that their network also no longer works. Jon ___ OpenIndiana-discuss mailing list OpenIndiana-discuss@openindiana.org http://openindiana.org/mailman/listinfo/openindiana-discuss ___ OpenIndiana-discuss mailing list OpenIndiana-discuss@openindiana.org http://openindiana.org/mailman/listinfo/openindiana-discuss
Re: [OpenIndiana-discuss] isc-dhcp client
On Wed, Sep 05, 2012 at 08:51:58PM -0500, Bob Friesenhahn wrote: On Wed, 5 Sep 2012, Gary Gendel wrote: Anyone know if there is a fundamental reason why we can't wholesale replace the Sun/Oracle dhcp client with the ISC one? If we don't get any updates downstream from Oracle we will never get features like ipv6 prefix delegation. This feature is becoming important as some big ISPs (i.e. Comcast) are using this to delegate IPV6 blocks to their business/personal customers. If the answer is that I should be able to replace it, the next question is if anyone has done this before and how difficult this would be to do. I assume you are talking about the client and not the server? If you are talking about the client, then it seems possible to do this via an upgrade. The document accompanying the ISC DHCP product states that their client does not work on Solaris. It recommends using the native client instead. I'm sure it could be made to work, but somebody would have to take on this project. To initiate it, please file a bug report. If you are talking about the server, unless the ISC version is truely a drop-in replacement, it would be best to make it an add-on package using different directories so that it is possible to migrate from one to the other and not crater users networks due to an update. As Gordon Ross mentions, the Sun dhcp server has nice integration with a dhcpmgr GUI (which I use under Solaris 10). Oracle Solaris 11 includes two DHCP servers, with a negative dependancy so that you can't enable both of them at the same time. Here's how they look: Name: service/network/dhcp Summary: BOOTP/DHCP Server Services Description: BOOTP/DHCP service and commands. Uses the BOOT Protocol and/or Dynamic Host Configuration Protocol to provide network configuration parameters to BOOTP/DHCP clients. Category: System/Services State: Installed Publisher: solaris Version: 0.5.11 Build Release: 5.11 Branch: 0.175.0.0.0.2.1 Packaging Date: October 19, 2011 06:26:00 AM Size: 615.87 kB FMRI: pkg://solaris/service/network/dhcp@0.5.11,5.11-0.175.0.0.0.2.1:20111019T062600Z Name: service/network/dhcp/isc-dhcp Summary: ISC DHCP Server and Relay Agent. Description: ISC DHCP is open source software that implements the Dynamic Host Configuration Protocols for connection to a local network. This package includes the ISC DHCP server, relay agent and the omshell tool. Category: System/Services State: Installed Publisher: solaris Version: 4.1 Build Release: 5.11 Branch: 0.175.0.0.0.2.537 Packaging Date: October 19, 2011 11:35:53 AM Size: 7.52 MB FMRI: pkg://solaris/service/network/dhcp/isc-dhcp@4.1,5.11-0.175.0.0.0.2.537:20111019T113553Z The ISC DHCP server is in OI userland: https://hg.openindiana.org/upstream/oracle/userland-gate/file/tip/components It likely hasn't been packaged yet. -- -Gary Mills--refurb--Winnipeg, Manitoba, Canada- ___ OpenIndiana-discuss mailing list OpenIndiana-discuss@openindiana.org http://openindiana.org/mailman/listinfo/openindiana-discuss
Re: [OpenIndiana-discuss] isc-dhcp client
Au contraire mon frere. :) I packaged the server up and I'm waiting for the thumbs up to push it into the main branch. I was wondering if I should include the server. As for the client on Solaris, my interpretation of the text tells me that it may work but since it exists on Solaris they don't include the client. This is why I asked if anyone had attempted it or knew why it wouldn't work. I'd have to dig into the dhcp client code to see what would it take to make it compatible. I might be enticed to do this if others have a similar need. The alternative is to implement prefix delegation in the existing client which I've already been told would be difficult. Gary On 9/6/12 9:42 AM, Gary Mills wrote: It likely hasn't been packaged yet. ___ OpenIndiana-discuss mailing list OpenIndiana-discuss@openindiana.org http://openindiana.org/mailman/listinfo/openindiana-discuss
Re: [OpenIndiana-discuss] isc-dhcp client
On Thu, Sep 06, 2012 at 10:06:15AM -0400, Gary Gendel wrote: Whoops! Make that I was wondering if I should include the client. I guessed that was it. I'd expect the client to be in a separate package since it should replace `dhcpagent' and possibly `dhcpinfo' and `in.ndpd', and might require changes to the SMF services that start them. As well, all OI machines will require the client but only a few will require the server. -- -Gary Mills--refurb--Winnipeg, Manitoba, Canada- ___ OpenIndiana-discuss mailing list OpenIndiana-discuss@openindiana.org http://openindiana.org/mailman/listinfo/openindiana-discuss
Re: [OpenIndiana-discuss] isc-dhcp client
On Wed, Sep 5, 2012 at 11:04 AM, Gary Gendel g...@genashor.com wrote: Hi, Anyone know if there is a fundamental reason why we can't wholesale replace the Sun/Oracle dhcp client with the ISC one? If we don't get any updates downstream from Oracle we will never get features like ipv6 prefix delegation. This feature is becoming important as some big ISPs (i.e. Comcast) are using this to delegate IPV6 blocks to their business/personal customers. If the answer is that I should be able to replace it, the next question is if anyone has done this before and how difficult this would be to do. Gary Is there any integration with dhcpmgr available for the ISC dhcpd? -- Gordon Ross g...@nexenta.com Nexenta Systems, Inc. www.nexenta.com Enterprise class storage for everyone ___ OpenIndiana-discuss mailing list OpenIndiana-discuss@openindiana.org http://openindiana.org/mailman/listinfo/openindiana-discuss
Re: [OpenIndiana-discuss] isc-dhcp client
On Wed, 5 Sep 2012, Gary Gendel wrote: Hi, Anyone know if there is a fundamental reason why we can't wholesale replace the Sun/Oracle dhcp client with the ISC one? If we don't get any updates downstream from Oracle we will never get features like ipv6 prefix delegation. This feature is becoming important as some big ISPs (i.e. Comcast) are using this to delegate IPV6 blocks to their business/personal customers. If the answer is that I should be able to replace it, the next question is if anyone has done this before and how difficult this would be to do. I assume you are talking about the client and not the server? If you are talking about the client, then it seems possible to do this via an upgrade. If you are talking about the server, unless the ISC version is truely a drop-in replacement, it would be best to make it an add-on package using different directories so that it is possible to migrate from one to the other and not crater users networks due to an update. As Gordon Ross mentions, the Sun dhcp server has nice integration with a dhcpmgr GUI (which I use under Solaris 10). Bob -- Bob Friesenhahn bfrie...@simple.dallas.tx.us, http://www.simplesystems.org/users/bfriesen/ GraphicsMagick Maintainer,http://www.GraphicsMagick.org/ ___ OpenIndiana-discuss mailing list OpenIndiana-discuss@openindiana.org http://openindiana.org/mailman/listinfo/openindiana-discuss
