On Tue, Jan 8, 2013 at 10:57 PM, John Kinsella <j...@stratosec.co> wrote:
> On Jan 8, 2013, at 4:38 PM, Sheng Yang <sh...@yasker.org> wrote: > > > On Tue, Jan 8, 2013 at 4:31 PM, John Kinsella <j...@stratosec.co> wrote: > > > >> > >> On Jan 8, 2013, at 4:17 PM, Sheng Yang <sh...@yasker.org> > >> wrote: > >>> > >>> If there is no other opinions, I would begin with DHCPv6 in shared > >> network > >>> as first step. > >> > >> > >> Sure, one suggestion: I've been using ISC's dhcpd instead of dnsmasq > as > >> they have some silly limitations (in "test" but I keep meaning to > >> contribute). Might be a good time to switch? > >> > > > > Well, I think dhcpd cannot be using as DNS server. So seems you need to > > have both dhcpd and dnsmasq running. That's not that convenient as one in > > all solution… > > I have dnsmasq running as a caching DNS resolver but not answering DHCP > requests. It might not be convenient, but at least it follows the RFC. :) > > > And what's the limitation you're talking about regarding dnsmasq? > > dnsmasq will only offer leases within a single IP block on a given NIC. > e.g. if you want to offer leases on two /28s through eth0, dnsmasq can't do > it. > > From a quick glance at it's man page, looks like it can do v4 and v6 > leases at the same time… > You mean dhcpd? I am exploring all the possibility right now. Currently dnsmasq in our systemvm doesn't support DHCPv6, so we would either update to a newer version dnsmasq, or using other dhcp server(e.g. dhcpd) on DHCPv6. But replacing the dhcp server is a big work, all the configuration need to be rewritten. Regarding dhcpd, I haven't figured out how much effort we need to spend if we want to switch. There is one possible solution for this release: say, using dhcpd only for IPv6, to reduce our effort of introducing IPv6(if it's easier than moving to dhcpd). And then we can make the choice in the later release. John, do you have some experiences can share regarding dhcpd? Also, regarding your problem, have you used cloudstack to distribute IP? I don't think we support leasing on two /28s in advance network now? --Sheng
