|
|
@@ -4842,29 +4842,22 @@ should include options from the isc option space:
|
|
|
<section id="dhcp6-config-subnets">
|
|
|
<title>Subnet Selection</title>
|
|
|
<para>
|
|
|
- The DHCPv6 server may receive requests from local (connected
|
|
|
- to the same subnet as the server) and remote (connecting via
|
|
|
- relays) clients.
|
|
|
- <note>
|
|
|
- <para>
|
|
|
- Currently relayed DHCPv6 traffic is not supported. The server will
|
|
|
- only respond to local DHCPv6 requests - see <xref linkend="dhcp6-limit"/>
|
|
|
- </para>
|
|
|
- </note>
|
|
|
- As it may have many subnet configurations defined, it
|
|
|
- must select appropriate subnet for a given request. To do this, the server first
|
|
|
+ The DHCPv6 server may receive requests from local (connected to the
|
|
|
+ same subnet as the server) and remote (connecting via relays) clients.
|
|
|
+ As server may have many subnet configurations defined, it must select
|
|
|
+ appropriate subnet for a given request. To do this, the server first
|
|
|
checks if there is only one subnet defined and source of the packet is
|
|
|
- link-local. If this is the case, the server assumes that the only subnet
|
|
|
- defined is local and client is indeed connected to it. This check
|
|
|
- simplifies small deployments.
|
|
|
+ link-local. If this is the case, the server assumes that the only
|
|
|
+ subnet defined is local and client is indeed connected to it. This
|
|
|
+ check simplifies small deployments.
|
|
|
</para>
|
|
|
<para>
|
|
|
If there are two or more subnets defined, the server can not assume
|
|
|
which of those (if any) subnets are local. Therefore an optional
|
|
|
- "interface" parameter is available within a subnet definition to designate that a given subnet
|
|
|
- is local, i.e. reachable directly over specified interface. For example
|
|
|
- the server that is intended to serve a local subnet over eth0 may be configured
|
|
|
- as follows:
|
|
|
+ "interface" parameter is available within a subnet definition to
|
|
|
+ designate that a given subnet is local, i.e. reachable directly over
|
|
|
+ specified interface. For example the server that is intended to serve
|
|
|
+ a local subnet over eth0 may be configured as follows:
|
|
|
<screen>
|
|
|
> <userinput>config add Dhcp6/subnet6</userinput>
|
|
|
> <userinput>config set Dhcp6/subnet6[1]/subnet "2001:db8:beef::/48"</userinput>
|
|
|
@@ -4875,6 +4868,55 @@ should include options from the isc option space:
|
|
|
</para>
|
|
|
</section>
|
|
|
|
|
|
+ <section id="dhcp6-relays">
|
|
|
+ <title>DHCPv6 Relays</title>
|
|
|
+ <para>
|
|
|
+ DHCPv6 server supports remote clients connected via relays. Server
|
|
|
+ that has many subnets defined and receives a request from client, must
|
|
|
+ select appropriate subnet for it. Remote clients there are two
|
|
|
+ mechanisms that can be used here. The first one is based on
|
|
|
+ interface-id options. While forwarding client's message, relays may
|
|
|
+ insert interface-id option that identifies the interface on which the
|
|
|
+ client message was received on. Some relays allow configuration of
|
|
|
+ that parameter, but it is sometimes hardcoded. This may range from
|
|
|
+ very simple (e.g. "vlan100") to very cryptic. One example used by real
|
|
|
+ hardware was "ISAM144|299|ipv6|nt:vp:1:110"). This may seem
|
|
|
+ meaningless, but that information is sufficient for its
|
|
|
+ purpose. Server may use it to select appropriate subnet and the relay
|
|
|
+ will know which interface to use for response transmission when it
|
|
|
+ gets that value back. This value must be unique in the whole
|
|
|
+ network. Server configuration must match whatever values are inserted
|
|
|
+ by the relays.
|
|
|
+ </para>
|
|
|
+ <para>
|
|
|
+ The second way in which server may pick the proper subnet is by using
|
|
|
+ linkaddr field in the RELAY_FORW message. Name of this field is somewhat
|
|
|
+ misleading. It does not contain link-layer address, but an address that
|
|
|
+ is used to identify a link. This typically is a global address. Kea
|
|
|
+ server checks if that address belongs to any defined subnet6. If it does,
|
|
|
+ that subnet is selected for client's request.
|
|
|
+ </para>
|
|
|
+ <para>
|
|
|
+ It should be noted that "interface" that defines which local network
|
|
|
+ interface can be used to access a given subnet and "interface-id" that
|
|
|
+ specify the content of the interface-id option used by relays are mutually
|
|
|
+ exclusive. A subnet cannot be both reachable locally (direct traffic) and
|
|
|
+ via relays (remote traffic). Specifying both is a configuration error and
|
|
|
+ Kea server will refuse such configuration.
|
|
|
+ </para>
|
|
|
+ <para>
|
|
|
+ To specify interface-id with value "vlan123", the following commands can
|
|
|
+ be used:
|
|
|
+<screen>
|
|
|
+> <userinput>config add Dhcp6/subnet6</userinput>
|
|
|
+> <userinput>config set Dhcp6/subnet6[0]/subnet "2001:db8:beef::/48"</userinput>
|
|
|
+> <userinput>config set Dhcp6/subnet6[0]/pool [ "2001:db8:beef::/48" ]</userinput>
|
|
|
+> <userinput>config set Dhcp6/subnet6[0]/interface-id "vland123"</userinput>
|
|
|
+> <userinput>config commit</userinput>
|
|
|
+</screen>
|
|
|
+ </para>
|
|
|
+ </section>
|
|
|
+
|
|
|
</section>
|
|
|
|
|
|
<section id="dhcp6-serverid">
|
|
|
@@ -4941,9 +4983,6 @@ Dhcp6/renew-timer 1000 integer (default)
|
|
|
</para>
|
|
|
</listitem>
|
|
|
<listitem>
|
|
|
- <simpara>Relayed traffic is not supported.</simpara>
|
|
|
- </listitem>
|
|
|
- <listitem>
|
|
|
<simpara>Temporary addresses are not supported.</simpara>
|
|
|
</listitem>
|
|
|
<listitem>
|
Tomek Mrugalski