2022-03-18 11:20:37 +01:00
|
|
|
.. _hooks-ddns-tuning:
|
|
|
|
|
|
2022-05-11 10:14:56 -04:00
|
|
|
``ddns_tuning``: Tuning DDNS updates
|
|
|
|
|
====================================
|
2022-03-18 11:20:37 +01:00
|
|
|
|
2022-05-19 14:49:45 -04:00
|
|
|
This hook library adds support for fine tuning various DNS update aspects. Currently it supports procedural host name generation and the ability to
|
2022-05-11 10:14:56 -04:00
|
|
|
skip performing DDNS updates for select clients. The DDNS Tuning hook
|
2022-04-06 13:53:34 -04:00
|
|
|
is a premium feature.
|
2022-03-18 11:20:37 +01:00
|
|
|
|
2022-04-21 11:05:18 +03:00
|
|
|
The library, which was added in Kea 2.1.5, can be loaded by the ``kea-dhcp4``
|
|
|
|
|
and ``kea-dhcp6`` daemons by adding it to ``hooks-libraries`` element of the
|
|
|
|
|
server's configuration:
|
2022-03-18 11:20:37 +01:00
|
|
|
|
|
|
|
|
.. code-block:: javascript
|
|
|
|
|
|
|
|
|
|
{
|
|
|
|
|
"hooks-libraries": [
|
2022-04-06 13:53:34 -04:00
|
|
|
:
|
|
|
|
|
,
|
2022-03-18 11:20:37 +01:00
|
|
|
{
|
|
|
|
|
"library": "/usr/local/lib/libdhcp_ddns_tuning.so",
|
|
|
|
|
"parameters": {
|
2022-04-06 13:53:34 -04:00
|
|
|
:
|
2022-03-18 11:20:37 +01:00
|
|
|
}
|
2022-04-06 13:53:34 -04:00
|
|
|
},
|
|
|
|
|
:
|
2022-03-18 11:20:37 +01:00
|
|
|
]
|
|
|
|
|
}
|
|
|
|
|
|
2022-04-06 13:53:34 -04:00
|
|
|
Procedural Host name generation
|
|
|
|
|
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
|
2022-03-18 11:20:37 +01:00
|
|
|
|
2022-04-06 13:53:34 -04:00
|
|
|
This hook library provides the ability to generate host names, procedurally, based on
|
|
|
|
|
an expression. The expression can be defined globally in the hook parameters, using
|
2022-04-21 11:05:18 +03:00
|
|
|
`hostname-expr`. If defined globally, it will apply to all hosts in all subnets. The
|
|
|
|
|
expressions can use all tokens defined in :ref:`classify`. An example of a global
|
2022-04-06 13:53:34 -04:00
|
|
|
expression is shown below:
|
|
|
|
|
|
|
|
|
|
.. code-block:: javascript
|
|
|
|
|
|
|
|
|
|
{
|
|
|
|
|
"hooks-libraries": [
|
|
|
|
|
:
|
|
|
|
|
,
|
|
|
|
|
{
|
|
|
|
|
"library": "/usr/local/lib/libdhcp_ddns_tuning.so",
|
|
|
|
|
"parameters": {
|
|
|
|
|
:
|
|
|
|
|
"hostname-expr": "'host-'+hexstring(pkt4.mac,'-')"
|
|
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
:
|
|
|
|
|
]
|
|
|
|
|
}
|
2022-03-18 11:20:37 +01:00
|
|
|
|
2022-04-06 13:53:34 -04:00
|
|
|
It is also possible to define this parameter in a subnet, using user-context mechanism.
|
2022-04-21 11:05:18 +03:00
|
|
|
If defined at the subnet level, the expression applies to specific subnet only. If the
|
|
|
|
|
subnet expression is defined as empty, "", it suppresses (or disables) the use of a
|
|
|
|
|
global expression for that subnet. An example subnet expression is shown below:
|
2022-03-18 11:20:37 +01:00
|
|
|
|
|
|
|
|
.. code-block:: javascript
|
|
|
|
|
|
|
|
|
|
"subnet4": [{
|
|
|
|
|
"subnet": "192.0.2.0/24",
|
|
|
|
|
"pools": [{
|
|
|
|
|
"pool": "192.0.2.10 - 192.0.2.20",
|
|
|
|
|
} ],
|
|
|
|
|
|
|
|
|
|
// This is a subnet-specific user context.
|
|
|
|
|
"user-context": {
|
2022-03-28 10:37:48 -04:00
|
|
|
"ddns-tuning:" {
|
2022-05-19 13:47:54 -04:00
|
|
|
"hostname-expr": "'guest-'+Int8ToText(substring(pkt4.yiaddr, 0,1))+'-' \
|
2022-03-28 10:37:48 -04:00
|
|
|
+Int8ToText(substring(pkt4.yiaddr, 1,2))+'-' \
|
|
|
|
|
+Int8ToText(substring(pkt4.yiaddr, 2,3))+'-' \
|
|
|
|
|
+Int8ToText(substring(pkt4.yiaddr, 3,4))",
|
|
|
|
|
},
|
2022-03-18 11:20:37 +01:00
|
|
|
"last-modified": "2017-09-04 13:32",
|
|
|
|
|
"description": "you can put anything you like here",
|
|
|
|
|
"phones": [ "x1234", "x2345" ],
|
|
|
|
|
"devices-registered": 42,
|
|
|
|
|
"billing": false
|
|
|
|
|
}
|
|
|
|
|
}]
|
|
|
|
|
|
2022-03-28 10:37:48 -04:00
|
|
|
.. note::
|
2022-04-21 11:05:18 +03:00
|
|
|
|
|
|
|
|
The expression value above uses a slash, '\', to show line continuation. This is for
|
2022-04-21 14:20:35 +00:00
|
|
|
clarity only and is not valid JSON supported by Kea parsing. The actual value has
|
2022-03-28 10:37:48 -04:00
|
|
|
to be expressed in a single line.
|
|
|
|
|
|
2022-03-18 11:20:37 +01:00
|
|
|
.. note::
|
|
|
|
|
|
2022-04-21 11:05:18 +03:00
|
|
|
Privacy should be taken into consideration when generating a host name. The host name
|
|
|
|
|
is usually inserted into the DNS, which is a public system. Exposing identifiers that
|
2022-03-18 11:20:37 +01:00
|
|
|
can be used to track devices, such as MAC address, are usually a very bad idea.
|
|
|
|
|
The global expression example used MAC address for simplicity.
|
2022-04-06 13:53:34 -04:00
|
|
|
|
|
|
|
|
DHCPv4 host name generation
|
|
|
|
|
---------------------------
|
|
|
|
|
|
|
|
|
|
With this library installed the behavior for ``kea-dhcp4`` when forming host names in
|
|
|
|
|
response to a client query (e.g. DISCOVER, REQUEST) is as follows:
|
|
|
|
|
|
|
|
|
|
1. If a host name is supplied via a host reservation use it along with the DDNS
|
|
|
|
|
behavioral parameters to form the final host name. Goto step 4.
|
|
|
|
|
|
|
|
|
|
2. If the client supplied an FQDN option (option 81) use the domain name value
|
|
|
|
|
specified within it along with the DDNS behavioral parameters to form the final
|
|
|
|
|
host name. Goto step 4.
|
|
|
|
|
|
|
|
|
|
3. If the client supplied a host name option (option 12) use the host name specified
|
|
|
|
|
within it along with the DDNS behavioral parameters to form the final host name.
|
|
|
|
|
|
|
|
|
|
4. If there is an ddns-tuning in-scope host name expression (either global or subnet),
|
2022-04-21 11:05:18 +03:00
|
|
|
calculate the host name using the expression. If the calculated value is not a fully
|
2022-04-06 13:53:34 -04:00
|
|
|
qualified name and there is an in-scope ddns-qualifying-suffix, append the suffix.
|
|
|
|
|
|
2022-04-21 11:05:18 +03:00
|
|
|
5. If the value calculated by the hook is not an empty string and is different than
|
2022-04-06 13:53:34 -04:00
|
|
|
the host name formed in the prior steps (1 or 2), the calculated value becomes the
|
|
|
|
|
final host name.
|
|
|
|
|
|
|
|
|
|
DHCPv6 host name generation
|
|
|
|
|
---------------------------
|
|
|
|
|
|
|
|
|
|
With this library installed the behavior for ``kea-dhcp6`` when forming host names in
|
|
|
|
|
response to a client query (e.g. SOLICIT, REQUEST, RENEW, REBIND) is as follows:
|
|
|
|
|
|
2022-04-12 11:56:46 -04:00
|
|
|
1. If the client supplied an FQDN option (option 39) use the domain name value
|
2022-04-06 13:53:34 -04:00
|
|
|
specified within it along with the DDNS behavioral parameters to form the final
|
2022-04-12 11:56:46 -04:00
|
|
|
host name. Goto step 4.
|
|
|
|
|
|
|
|
|
|
2. If the client did not supply an FQDN but ddns-replace-client-name is either
|
|
|
|
|
``always`` or ``when-not-present``, then calculate the final form of the host
|
|
|
|
|
name and use it to create an outbound FQDN. Goto step 4.
|
|
|
|
|
|
|
|
|
|
3. If there is no outbound FQDN at this point, client name processing for this
|
|
|
|
|
packet stops. Without an outbound FQDN there is no way to communicate a host
|
|
|
|
|
name to the client.
|
|
|
|
|
|
|
|
|
|
4. If a host name is supplied via a host reservation use it along with the DDNS
|
|
|
|
|
behavioral parameters to form the final host name, and supersedes the FQDN value
|
|
|
|
|
calculated in steps 1 or 2.
|
2022-04-06 13:53:34 -04:00
|
|
|
|
2022-04-12 11:56:46 -04:00
|
|
|
5. If there is a ddns-tuning in-scope host name expression (either global or subnet),
|
2022-04-21 11:05:18 +03:00
|
|
|
calculate the host name using the expression. If the calculated value is not a fully
|
2022-04-06 13:53:34 -04:00
|
|
|
qualified name and there is an in-scope ddns-qualifying-suffix, append the suffix.
|
|
|
|
|
|
2022-04-21 11:05:18 +03:00
|
|
|
6. If the value calculated by the hook is not an empty string and is different than
|
2022-04-06 13:53:34 -04:00
|
|
|
the host name formed in the prior steps (1 or 2), the calculated value becomes the
|
|
|
|
|
final host name.
|
2022-05-11 10:14:56 -04:00
|
|
|
|
|
|
|
|
Skipping DDNS Updates
|
|
|
|
|
~~~~~~~~~~~~~~~~~~~~~
|
|
|
|
|
|
|
|
|
|
The ddns-tuning library also provides the ability to skip DDNS updates on a per
|
|
|
|
|
client basis. The library recognizes a special client class, "SKIP_DDNS". When a
|
|
|
|
|
client is matched to this class, kea servers (kea-dhcp4 and kea-dhcp6) will not
|
|
|
|
|
send DDNS update requests (NCRs) to kea-dhcp-ddns. A common use-case would be
|
|
|
|
|
to skip DDNS updates for fixed-address host reservations. This is done easily by
|
|
|
|
|
simply assiging the class to the host reservation as shown below:
|
|
|
|
|
|
|
|
|
|
.. code-block:: javascript
|
|
|
|
|
|
|
|
|
|
{
|
|
|
|
|
"reservations": [
|
|
|
|
|
{
|
|
|
|
|
"hw-address": "01:02:03:04:05:06",
|
|
|
|
|
"ip-address": "192.0.2.1",
|
|
|
|
|
"client-classes": [ "SKIP_DDNS", "foo", "bar" ]
|
|
|
|
|
}]
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
The ddns-tuning library will spot the presence of the "SKIP_DDNS" class in the
|
|
|
|
|
client's class list each time the client requests, renews, or releases its lease,
|
|
|
|
|
and instruct kea-dhcp4 to bypass sending DDNS updates. A similar work flow is
|
|
|
|
|
supported for kea-dhcp6:
|
|
|
|
|
|
|
|
|
|
.. code-block:: javascript
|
|
|
|
|
|
|
|
|
|
{
|
|
|
|
|
"reservations": [
|
|
|
|
|
{
|
|
|
|
|
"duid": "01:02:03:04:05:06",
|
|
|
|
|
"ip-address": "2001:db8::1",
|
|
|
|
|
"client-classes": [ "SKIP_DDNS", "foo", "bar" ]
|
|
|
|
|
}]
|
|
|
|
|
}
|
2022-05-19 13:38:10 -04:00
|
|
|
|
2022-05-19 14:49:45 -04:00
|
|
|
Although, "SKIP_DDNS" is a special class, it can be defined with a test
|
|
|
|
|
expression. Defining it as shown below, would omit DDNS updates for all KNOWN
|
|
|
|
|
clients:
|
|
|
|
|
|
|
|
|
|
.. code-block:: javascript
|
|
|
|
|
|
|
|
|
|
{
|
|
|
|
|
"client-classes":[
|
|
|
|
|
{
|
|
|
|
|
"name": "SKIP_DDNS",
|
|
|
|
|
"test": "member('KNOWN')"
|
|
|
|
|
}]
|
|
|
|
|
}
|
|
|
|
|
|
2022-05-19 13:38:10 -04:00
|
|
|
.. note::
|
|
|
|
|
|
|
|
|
|
In order for the SKIP_DDNS class to have an effect, the DDNS-tuning hook
|
|
|
|
|
library must be loaded.
|
|
|
|
|
|
