[Dnsmasq-discuss] dhcp-ignore=tag:!known questions

B. Cook bcook at poughkeepsieschools.org
Thu Jun 9 22:02:42 UTC 2022 

(I'm not sure if this is the best way to explain this, so if it is
confusing I apologize..)
(dnsmasq 2.86 should it matter)

I have a conf-file setting to include dhcp settings vs dnsmasq settings..

listen-address, user, group, logfacility, no-hosts, no-poll, no-resolv
(dnsmasq settings)

then for dhcp settings..

dhcp-ignore=tag:!known
dhcp-authorative
dhcp-no-override
dhcp-generate-names
dhcp-fqdn

(other global dhcp options)
dhcp-option=option:ntp-server,0.0.0.0
dhcp-option=option:tzdb-timezone,"America/New_York"
dhcp-option=option:log-server,10.20.0.16
dhcp-option=option:dns-server,10.20.0.43,10.20.32.100

then conf-file entries for defined ranges

(for example)
conf-file=/etc/dnsmasq.d/dnsmasq.red.dhcp  # 10.20.32/20
conf-file=/etc/dnsmasq.d/dnsmasq.blue.dhcp  # 10.20.16/20

dnsmasq.red.dhcp then defines global defaults for the red range..

domain=red.dns,10.20.0.0/20
dhcp-range=red,10.20.12.1,10.20.14.254,255.255.240.0,4h
dhcp-option=red,option:router,10.20.0.1                 # Gateway
dhcp-option=red,option:domain-name,red.dns             # Domain

dnsmasq.blue.dhcp defines options for the blue range..

domain=blue.dns,10.20.16.0/20
dhcp-range=blue,10.20.28.1,10.20.30.254,255.255.240.0,4h
dhcp-option=blue,option:router,10.20.16.1                 # Gateway
dhcp-option=blue,option:domain-name,blue.dns             # Domain

etc..

in each red, orange, yellow, green, blue, etc range (buildings) there
are hosts defined to allow dhcp.. because of the initial
dhcp-ignore=tag:!known definition at the top of the include..

Defining a host in red does not give them access to blue building,
etc.. all of this is fine and working; and if the above is clear below
is my problem to which I am looking for a possible solution..

We are adding a bunch of new Netgate devices at each building,
apparently pfsense 2.6.0 does not do dhcpd and dhcp-relay on the same
device it is one or the other..

Netgate 6100 fwiw, pfsense+
DHCP Relay is currently enabled. DHCP Server canot be enabled while
the DHCP Relay is enabled on any interface.

So just now hitting this wall; and the only (quick solution) pfsense
option is to dhcp-relay all vlans from buildings, red, orange, yellow,
etc.. so this main single dnsmasq with the dhcp-ignore=tag:!known
defined..

Is there a way to define another range and "dis-inherit" the !known tag?

(for example)
conf-file=/etc/dnsmasq.d/dnsmasq.red.clear.dhcp  # 10.120.36/24

domain=red-clear.dns,10.120.36.0/24
dhcp-range=red-clear,10.120.36.100,10.120.36.200,255.255.240.0,4h
dhcp-option=red-clear,option:router,10.120.36.254                 # Gateway
dhcp-option=red-clear,option:domain-name,red-clear.dns             # Domain

and then *not* have to manually assign each host I want to allow in this range?

Is that possible?

>From the man page which talks about the  --dhcp-ignore=tag:!known, I
cannot figure out how to 'undo it' for a range..

(as I have not defined it for red, orange, yellow, etc.. I cannot seem
to undefine or not define it for red-clear, orange-clear, etc.. )

Or is the answer to have a new entry:

dhcp-ignore=red,orange,yellow,tag:!known

Thank you in advance for taking the time to read this..

More information about the Dnsmasq-discuss mailing list