Prevent DHCPACK for DHCPINFORM in the DHCP server The orignal "dhcp-range=xxx,static" would only prohibit DHCPREQUEST from unknown hosts, but not DHCPINFORM which can request routing information. This caused trouble for some bridged networks outside CloudStack.
This patch would fix the issue, prevent dnsmasq from acking any unknown request. Signed-off-by: Sheng Yang <sheng.y...@citrix.com> Project: http://git-wip-us.apache.org/repos/asf/cloudstack/repo Commit: http://git-wip-us.apache.org/repos/asf/cloudstack/commit/986813d9 Tree: http://git-wip-us.apache.org/repos/asf/cloudstack/tree/986813d9 Diff: http://git-wip-us.apache.org/repos/asf/cloudstack/diff/986813d9 Branch: refs/heads/acl-item-cidrs Commit: 986813d9735d4930f7e0998aad7120e205ec50b1 Parents: b0c6d47 Author: Joris van Lieshout <jvanliesh...@schubergphilis.com> Authored: Thu Feb 20 14:54:04 2014 +0100 Committer: Sheng Yang <sheng.y...@citrix.com> Committed: Tue Feb 25 14:55:24 2014 -0800 ---------------------------------------------------------------------- systemvm/patches/debian/config/etc/dnsmasq.conf.tmpl | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) ---------------------------------------------------------------------- http://git-wip-us.apache.org/repos/asf/cloudstack/blob/986813d9/systemvm/patches/debian/config/etc/dnsmasq.conf.tmpl ---------------------------------------------------------------------- diff --git a/systemvm/patches/debian/config/etc/dnsmasq.conf.tmpl b/systemvm/patches/debian/config/etc/dnsmasq.conf.tmpl index 07c5902..447e748 100644 --- a/systemvm/patches/debian/config/etc/dnsmasq.conf.tmpl +++ b/systemvm/patches/debian/config/etc/dnsmasq.conf.tmpl @@ -277,7 +277,9 @@ dhcp-hostsfile=/etc/dhcphosts.txt # or /etc/ethers. Equivalent to ISC "deny unknown-clients". # This relies on the special "known" tag which is set when # a host is matched. -#dhcp-ignore=tag:!known +# +# When using bridged networks in ACS this prevents ack to DHCPINFORM etc. request +dhcp-ignore=tag:!known # Send extra options which are tagged as "red" to any machine whose # DHCP vendorclass string includes the substring "Linux"
