updated dhcp conf and env variables; updated boot.ipxe

apache/vars-vars

@@ -1,4 +1,6 @@
-DHCP_DDNS_KEY
+DHCP_TSIG_KEY_NAME
+DHCP_TSIG_KEY_ALGO
+DHCP_TSIG_KEY_SECRET
 
 DHCP_DNS_SERVER
 DHCP_TFTP_SERVER

data/apache/files/boot.ipxe

@@ -1,4 +1,5 @@
 #!ipxe
+:main
 console --picture misc/splash.png
 menu netboot.${domain} PXE
 
@@ -36,6 +37,7 @@ foreach ($types as $type)
 
 item --gap -- Misc
 item chain-online Chain on rthoni.com
+item config Config
 item shell Shell
 item reboot Reboot
 choose choice && goto ${choice}
@@ -48,6 +50,10 @@ echo $labels;
 :chain-online
 chain http://netboot.rthoni.com/boot.ipxe
 
+:config
+config
+goto main
+
 :shell
 shell
 

env

@@ -1,4 +1,6 @@
-DHCP_DDNS_KEY=Y2hhbmdlX2l0
+DHCP_TSIG_KEY_NAME=dhcpupdate
+DHCP_TSIG_KEY_ALGO=hmac-sha1
+DHCP_TSIG_KEY_SECRET=UmY/YecbaCwQ8hKHZxNJuudOC5kWeuW64Ohgvao8vUg=
 
 DHCP_DNS_SERVER=10.15.100.1
 DHCP_TFTP_SERVER=10.15.100.1

isc-dhcp/dhcpd.conf

@@ -1,22 +1,22 @@
 #Dynamic DNS security settings
-key "dhcpdupdate" {
-        algorithm hmac-md5;
-        secret "DHCP_DDNS_KEY";
+key DHCP_TSIG_KEY_NAME {
+        algorithm DHCP_TSIG_KEY_ALGO;
+        secret "DHCP_TSIG_KEY_SECRET";
 };
 
-zone dhcp.site.rthoni.com {
+zone DHCP_DYN_IPS_DOMAIN {
     primary DHCP_DNS_SERVER;
-    key dhcpdupdate;
+    #key DHCP_TSIG_KEY_NAME;
 }
 
-zone site.rthoni.com {
+zone DHCP_SITE_DOMAIN {
     primary DHCP_DNS_SERVER;
-    key dhcpdupdate;
+    #key DHCP_TSIG_KEY_NAME;
 }
 
-zone 100.15.10.in-addr.arpa. {
+zone DHCP_REV_DOMAIN {
     primary DHCP_DNS_SERVER;
-    key dhcpdupdate;
+    #key DHCP_TSIG_KEY_NAME;
 }
 
 
@@ -28,6 +28,13 @@ option classless-routes-win code 249 = array of unsigned integer 8;
 default-lease-time 600;
 max-lease-time 7200;
 
+# Dynamic DNS update
+ddns-updates on;
+ddns-update-style interim;
+update-static-leases on;
+#allow client-updates;
+ddns-rev-domainname "in-addr.arpa.";
+
 # Misc settings
 use-host-decl-names on;
 authoritative;
@@ -36,12 +43,8 @@ log-facility local7;
 subnet DHCP_SUBNET netmask DHCP_NETMASK {
 
   # Dynamic DNS update
-  ddns-updates off; #TODO
-  ddns-update-style interim;
-  update-static-leases off;
   ddns-domainname "DHCP_DYN_IPS_DOMAIN";
-  ddns-rev-domainname "DHCP_REV_DOMAIN";
-
+  update-conflict-detection false;
 
   # IP settings
   range DHCP_IP_FIRST DHCP_IP_LAST;
@@ -71,7 +74,26 @@ subnet DHCP_SUBNET netmask DHCP_NETMASK {
 
   # Static IP hosts
   group {
+    host vm-pxe {
+      hardware ethernet 08:00:27:7b:9d:21;
+      fixed-address 10.15.100.10;
+    }
+    host vm-windows {
+      hardware ethernet 08:00:27:76:ce:95;
+      fixed-address 10.15.100.11;
+    }
     ddns-domainname "DHCP_SITE_DOMAIN";
+    option host-name = host-decl-name;
+    ddns-hostname = config-option host-name;
+  }
+
+  # Force a default hostname if not present
+  if option dhcp-message-type = 3 and not exists host-name and config-option host-name = null {
+    #ddns-hostname = concat("dyn-", binary-to-ascii(10, 8, "-", leased-address));
+    #option host-name = ddns-hostname;
+    option host-name = concat("dyn-", binary-to-ascii(10, 8, "-", leased-address));
+    ddns-hostname = config-option host-name;
+    #log(info, concat("Defaulting hostname to ", config-option host-name, " for ", binary-to-ascii(16, 8, ":", hardware)));
   }
 }
 

isc-dhcp/vars-vars

@@ -1,4 +1,6 @@
-DHCP_DDNS_KEY
+DHCP_TSIG_KEY_NAME
+DHCP_TSIG_KEY_ALGO
+DHCP_TSIG_KEY_SECRET
 
 DHCP_DNS_SERVER
 DHCP_TFTP_SERVER

tftpd/vars-vars

@@ -1,4 +1,6 @@
-DHCP_DDNS_KEY
+DHCP_TSIG_KEY_NAME
+DHCP_TSIG_KEY_ALGO
+DHCP_TSIG_KEY_SECRET
 
 DHCP_DNS_SERVER
 DHCP_TFTP_SERVER