mir/kea
2
0
Fork 0
mirror of https://gitlab.isc.org/isc-projects/kea synced 2025-09-03 07:25:18 +00:00
Code Issues Releases Wiki Activity

[#1275] Updated v6 lease-query section in ARM

Browse Source 
doc/sphinx/arm/hooks-lease-query.rst
    Documented new, "prefix-lengths" lease-query parameter
This commit is contained in:
Thomas Markwalder
2023-04-18 15:35:27 -04:00
committed by Razvan Becheriu
parent 1fa326ea8e
commit cd6d9ba56b
1 changed files with 32 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

36
doc/sphinx/arm/hooks-lease-query.rst
View File

@@ -186,9 +186,8 @@ attached to a ``DHCPV6_LEASEQUERY`` message:
`RFC 5007, Section 3.3 <https://tools.ietf.org/html/rfc5007#section-3.3>`__ `RFC 5007, Section 3.3 <https://tools.ietf.org/html/rfc5007#section-3.3>`__
states that querying by IP address should return either a lease (e.g. states that querying by IP address should return either a lease (e.g.
binding) for the address itself or a lease for a delegated prefix that binding) for the address itself or a lease for a delegated prefix that
contains the address. The latter is not currently implemented. Leases for contains the address. The latter case is not supported by releases
delegated prefixes may only be returned when querying by client ID. See prior to Kea 2.3.7.
`GitLab issue #1275 <https://gitlab.isc.org/isc-projects/kea/-/issues/1275>`__
``DHCPV6_LEASEQUERY`` queries are only honored if the source address of ``DHCPV6_LEASEQUERY`` queries are only honored if the source address of
the query matches an entry in a list of known IP addresses which are the query matches an entry in a list of known IP addresses which are
@@ -325,7 +324,8 @@ addresses:
{ {
"library": "lib/kea/hooks/libdhcp_lease_query.so", "library": "lib/kea/hooks/libdhcp_lease_query.so",
"parameters": { "parameters": {
"requesters": [ "2001:db8:1::1", "2001:db8:2::1" ] "requesters": [ "2001:db8:1::1", "2001:db8:2::1" ],
"prefix-lengths": [ 72 ]
} }
} }
], ],
@@ -336,6 +336,34 @@ addresses:
For security purposes, there is no way to specify wildcards. Each requester address For security purposes, there is no way to specify wildcards. Each requester address
must be explicitly listed. must be explicitly listed.
When a query by IP address does not match an existing address lease,
a search for a matching delegated prefix is conducted. This is carried
out by iterating over a list of prefix lengths, in descending order,
extracting a prefix of that length from the query address and searching
for a delegation matching the resulting prefix. This continues for each
length in the list until a match is found or the list is exhausted.
By default, the list of prefix lengths to use in the search is determined
dynamically after (re)configuration events. This resulting list
will contain unique values of ``delegated-len`` gleaned from the currently
configured set of PD pools.
There is an optional parameter, ``prefix-lengths``, shown above which
provides the ability to explicitly configure the list rather than having
it be determined dynamically. This provides tighter control over which
prefix lengths are searched. In the above example, the prefix length
search will be restricted to single pass, using a length of 72, regardless
of whether or not there are pools using other values for ``delegated-len``.
Specifying an empty list, as shown below:
::
:
"prefix-lengths": [ ]
:
disables the search for delegated prefixes for query by IP address.
.. _bulk-lease-query-dhcpv4: .. _bulk-lease-query-dhcpv4:
DHCPv4 Bulk Leasequery DHCPv4 Bulk Leasequery