基本上我想做到以下几点:
我使用的dhcpd.conf的问题是,所有的用户都可以得到IP地址,但是对于未知的客户端,所有的用户都可以进入池中。
#some server default values option domain-name "example.org"; option domain-name-servers ns1.example.org, ns2.example.org; default-lease-time 600; max-lease-time 7200; #default network declaration subnet 172.0.7.0 netmask 255.255.255.0 {} #class declaration class "l2vpn_user" { match pick-first-value (option dhcp-client-identifier, hardware); option bootfile-name "CH6541E-VLAN181_new1.cfg"; filename "CH6541E-VLAN181_new1.cfg"; } #manually assigning 3 subclasses subclass "l2vpn_user" 1:00:22:68:f2:e0:e2; subclass "l2vpn_user" 1:00:22:68:f2:e1:c2; subclass "l2vpn_user" 1:00:22:68:f2:e3:96; #main subnet declaration subnet 10.161.255.0 netmask 255.255.255.0 { option routers 10.161.255.1; next-server 192.168.11.245; allow leasequery; max-lease-time 300; option bootfile-name "160basic_max_snmp.bin"; filename "160basic_max_snmp.bin"; option time-servers 172.0.7.52; #2 pools, l2vpn user for the first pool pool { range 10.161.255.2 10.161.255.200; allow members of "l2vpn_user"; } #The rest use this pool pool { range 10.161.255.201 10.161.255.254; allow unknown-clients; } } 你的dhcpd.confconfiguration是有效的。 我在isc-dhcp 4.2.4上自己testing了它,而子类的MAC地址得到了l2vpn_user池地址。
我build议在启动debugging日志logging(-f和-d标志)的情况下在forground中运行dhcpd,并根据logging的内容进行一些完整性检查。 由于你的configuration是有效的,并在我的testing工作,很可能有一些外部问题导致你的问题。