Inhaltsverzeichnis

DHCPv4|v6-Server mit DHCP ISC Kea unter Arch Linux einrichten und nutzen

DHCPv4|v6-Server mit DHCP ISC Kea unter Arch Linux einrichten und nutzen

under construction - an dem Artikel wird gerade gefeilt … coming soon!

Zum Einsatz in unserer Umgebung wird der Kea DHCP-Server kommen, der Nachfolger des ISC DHCP Servers der Ende 2022 das Ende seines Lebenszyklus erreichte und nicht weiterentwickelt wurde. Das Nachfolgeprodukt ist nun der moderne Open Source DHCPv4 & DHCPv6 Server Kea.

Im wesentlichen unterscheidet sich Kea von seinem Vorgänger unter anderem durch sein modulares Komponentenbasierenden Design, welches mit sog. Hooks-Modulen leicht erweiterbar ist. Kea stellt einzelne Daemons zur Verfügung die entweder gemeinsam oder auch getrennt genutzt werden können. So enthält Kea einen Daemon für einen DHCPv4-Server, einen DHCPv6-Server und ein dynamisches Modul für DNS. Die Konfiguration des Kea-Servers erfolgt mit Hilfe einer JSON-Konfigurationsdatei. Mit Hilfe der REST-API können zur Laufzeit jederzeit während des Betriebs Änderungen des Daemons vorgenommen werden, ohne dass der Daemon neu gestartet werden muss. Optional kann beim Kea Server auch ein WEB-UI ein grafisches Dashboard genutzt werden zur Überwachung mehrerer Kea-Instanzen. Neben der Dateibasierenden Variante können die ganzen Konfigurationsoptionen auch optional in einer PostgreSQL oder Maria-mySQL-Datenbank vorgehalten werden.

In der nachfolgenden WIKI-Artikel wollen wir uns nun eingehender mit der Installation und Konfiguration unseres Kea DHCP Servers für für DHCPv4 und DHCPv6 beschäftigen. In dem Konfigurationsbeispiel wird dem Kea-Daemon die Verwaltung und Verteilung der Intranet-Adressen der Zone intra.nausch.org übertragen. Dieses Subnetz umfasst nachfolgende Adressbereiche - zum besseren Verständnis sind in der Tabelle auch exemplarische zwei Hosts mit den entsprechenden Adressen vermerkt:

Subnetz (ID)	Subnetz (Use)	Subnetz Addresse -	Host Address-Range (global Unicast)	Host -	IPv4 -	Link-Local-Scope -	Site-Local-Scope -	Global-Scope -
7	Intra	2003:a:e0d:7607::/64	2003:a:e0d:7607::
				pml010102	`10.0.10.102`	`fd00::7:10:0:10:102`	`fe80::7:10:ff:fe10:102`	`2003:a:e0d:7607:10:0:10:102`
				vml010110	`10.0.10.110`	`fd00::7:10:0:10:110`	`fe80::7:10:ff:fe10:110`	`2003:a:e0d:7607:10:0:10:110`

Grundsätzliches

DHCPv4-Adressvergabe

Der grundsätzliche Ablauf bei der Adress-Anfrage folgt dabei folgendem Schema. Die Kommunikation zwischen dem Server (Port 67) und dem Klienten (Port 68) erfolgte mittels UPD¹⁾.

Beim Booten des Klienten frägt dieser mit einer DHCPDISCOVER-Nachricht via Broadcast nach seiner Konfiguration. Zu diesem Zeitpunkt besitzt er noch keine eigene IP-Adresse und er kennt auch noch nicht, in welchem Netz er sich befindet. Lediglich seine MAC²⁾-Adresse seines Netzwerkinterfaces ist ihm bekannt. Aus diesem Grund sendet er ein Broadcastpaket mit der Quelladresse 0.0.0.0 und an die Zieladresse 255.255.255.255.

 Sep 12 21:34:12 nss dhcpd: DHCPDISCOVER from 00:04:13:23:3f:b5 via eth0

Dieses Broadcast-Paket beantwortet nun der DHCP-Server mit einer DHCPOFFER-Nachricht. Das Antwortpaket beinhaltet bereits als Zieladresse die IP, welche der Klient in Zukunft bekommen soll. Da bei der vorherigen Anfrage des Klienten, dieser seine eigene MAC-Adresse mitschickte, kann nun auf diese Weise die DHCPOFFER-Nachricht ihr Ziel finden.

 Sep 12 21:34:12 nss dhcpd: DHCPOFFER on 192.168.10.61 to 00:04:13:23:3f:b5 via eth0

Der Klient hat also vom DHCP-Server ein sogenanntes Angebot (offer) bekommen und entscheidet nun, ob es für ihn so in Ordnung ist. Trifft dies zu, sendet er eine DHCPREQUEST-Nachricht, an den DHCP-Server um diesen mitzuteilen, daß er diese Konfiguration nutzen will.

 Sep 12 21:34:12 nss dhcpd: DHCPREQUEST for 192.168.10.61 (192.168.10.1) from 00:04:13:23:3f:b5 via eth0

Der DHCP-Server bestätigt dies und sendet eine DHCPACK-Nachricht, somit besitzt der Klient nun seine eigene IP-Adresse und kennt ggf. noch weitere Parameter für seine weitere Netzwerkkommunkation.

 Sep 12 21:34:12 nss dhcpd: DHCPACK on 192.168.10.61 to 00:04:13:23:3f:b5 via eth0

Der gesamte erfolgreiche Ablauf aus Sicht des DHCP-Servers entspricht folgendem Diagramm.

Im syslog des DHCP-Servers wird der Ablauf wie folgt festgehalten:

Sep 12 21:34:12 nss dhcpd: DHCPDISCOVER from 00:04:13:23:3f:b5 via eth0
Sep 12 21:34:12 nss dhcpd: DHCPOFFER on 192.168.10.61 to 00:04:13:23:3f:b5 via eth0
Sep 12 21:34:12 nss dhcpd: DHCPREQUEST for 192.168.10.61 (192.168.10.1) from 00:04:13:23:3f:b5 via eth0
Sep 12 21:34:12 nss dhcpd: DHCPACK on 192.168.10.61 to 00:04:13:23:3f:b5 via eth0

Sollte die ganze Prozedur Fehl schlagen, z.B. weil der Klient herausgefunden hat, daß die IP-Adresse doppelt vergeben ist, sendet er eine DHCPDECLINE-Nachricht an der Server. Im Falle einer DHCPDECLINE-Nachricht, sperrt der Server die Adresse für die interne Vergabe und die gesamte Vergabeprozedur beginnt erneut von vorne.

Zusammen mit seiner IP-Adresse erhält der Klient in der DHCPACK-Nachricht auch eine Lease-Time mitgeteilt, welche ihm mitteilt, wie lange die IP-Adresse für ihn reserviert ist. Im RFC Standard wurde definiert, daß der Klient nach der Hälfte der Lease-Time einen erneuten DHCPREQUEST sendet. So teilt er dem Server mit, daß er weiterhin die für ihn reservierte IP-Adresse behalten möchte. Nach Erhalt dieser Nachricht sendet der DHCP-Server eine identische DHCPACK-Nachricht an den Client zurück, in der dann die aktuelle neue Lease-Time mitgeteilt wird. Die IP-Adresse ist somit verlängert und der DCHP-Refresh ist komplett. Sollte der Klient es versäumen eine Verlängerung zu beantragen, muss er die Konfiguration des Netzwerkinterfaces verwerfen und der DHCP-Request startet erneut mit einer DHCPDISCOVER-Nachricht.

Beim Herunterfahren eines Klienten kann dieser dem Server mit einer DHCPRELEASE-Nachricht den Server informieren, damit dieser die Adresse wieder freigeben kann.

 Sep 12 21:58:17 nss dhcpd: DHCPRELEASE of 192.168.10.238 from 00:17:a4:7d:26:1a (hpc6180) via eth0 (found)

Der Klient hat aber auch die Möglichkeit, seine zuletzt zugewiesene IP-Adresse über den Reboot hinweg zu „merken“. Dies kann z.B. dann der Fall sein, wenn die Lease-Time, noch nicht abgelaufen ist, oder dem Klienten eine feste IP-Adresse zugeteilt wurde. Dann entfallen die Initialisierungsschritte und der Klient schickt direkt eine DHCPREQUEST-Nachricht an den DHCP-Server. Dieser bestätigt entweder die Anfrage oder sendet eine DHCPNAK-Nachricht um dem Klienten mitzuteilen, daß dieser seine gespeicherten Konfigurationen zu löschen, und die Anfrage komplett von vorne zu beginnen hat.

 Sep 12 22:01:13 nss dhcpd: DHCPREQUEST for 192.168.10.15 from 00:17:a4:7d:26:1a via eth0
 Sep 12 22:01:13 nss dhcpd: DHCPACK on 192.168.10.15 to 00:17:a4:7d:26:1a via eth0

DHCPv6-Adressvergabe

t.b.d.

Installation

Die Installation und Konfiguration des DHCP-Servers gestaltet sich relativ einfach. Bei der Installation des Kea-Paketes verwenden wir unter Arch Linux den Paketmanager pacman.

Als User:
```
 $ sudo pacman -S kea
```
Als Nutzer mit Root-Rechten entsprechend:
```
 # pacman -S kea
```

Paketinhalt

Was uns das Paket kea alles in das System unseres Arch Linux Server gebracht hat, können wir wie folgt abfragen:

 # pacman -Qil kea

Paketinhalte

Name            : kea
Version         : 2.4.1-1
Description     : High-performance, extensible DHCP server engine from ISC, supporting both DHCPv4 and DHCPv6
Architecture    : x86_64
URL             : https://kea.isc.org
Licenses        : MPL2
Groups          : None
Provides        : None
Depends On      : log4cplus  mariadb-libs  openssl  postgresql-libs
Optional Deps   : mariadb: lease information database
                  postgresql: lease information database
                  python: to use kea-shell [installed]
                  krb5: Kerberos support [installed]
                  kea-docs: user and developer documentation
Required By     : None
Optional For    : None
Conflicts With  : None
Replaces        : None
Installed Size  : 22.61 MiB
Packager        : Robin Candau <antiz@archlinux.org>
Build Date      : Tue 28 Nov 2023 05:52:25 PM CET
Install Date    : Sat 02 Mar 2024 08:35:27 PM CET
Install Reason  : Explicitly installed
Install Script  : No
Validated By    : Signature

kea /etc/
kea /etc/kea/
kea /etc/kea/kea-ctrl-agent.conf
kea /etc/kea/kea-dhcp-ddns.conf
kea /etc/kea/kea-dhcp4.conf
kea /etc/kea/kea-dhcp6.conf
kea /etc/kea/keactrl.conf
kea /usr/
kea /usr/bin/
kea /usr/bin/kea-admin
kea /usr/bin/kea-ctrl-agent
kea /usr/bin/kea-dhcp-ddns
kea /usr/bin/kea-dhcp4
kea /usr/bin/kea-dhcp6
kea /usr/bin/kea-lfc
kea /usr/bin/kea-msg-compiler
kea /usr/bin/kea-shell
kea /usr/bin/keactrl
kea /usr/bin/perfdhcp
kea /usr/include/
kea /usr/include/kea/
kea /usr/include/kea/asiodns/
kea /usr/include/kea/asiodns/asiodns_messages.h
kea /usr/include/kea/asiodns/io_fetch.h
kea /usr/include/kea/asiodns/logger.h
kea /usr/include/kea/asiolink/
kea /usr/include/kea/asiolink/addr_utilities.h
kea /usr/include/kea/asiolink/asio_wrapper.h
kea /usr/include/kea/asiolink/asiolink.h
kea /usr/include/kea/asiolink/botan_boost_tls.h
kea /usr/include/kea/asiolink/botan_boost_wrapper.h
kea /usr/include/kea/asiolink/botan_tls.h
kea /usr/include/kea/asiolink/common_tls.h
kea /usr/include/kea/asiolink/crypto_tls.h
kea /usr/include/kea/asiolink/dummy_io_cb.h
kea /usr/include/kea/asiolink/interval_timer.h
kea /usr/include/kea/asiolink/io_acceptor.h
kea /usr/include/kea/asiolink/io_address.h
kea /usr/include/kea/asiolink/io_asio_socket.h
kea /usr/include/kea/asiolink/io_endpoint.h
kea /usr/include/kea/asiolink/io_error.h
kea /usr/include/kea/asiolink/io_service.h
kea /usr/include/kea/asiolink/io_service_signal.h
kea /usr/include/kea/asiolink/io_service_thread_pool.h
kea /usr/include/kea/asiolink/io_socket.h
kea /usr/include/kea/asiolink/openssl_tls.h
kea /usr/include/kea/asiolink/process_spawn.h
kea /usr/include/kea/asiolink/tcp_acceptor.h
kea /usr/include/kea/asiolink/tcp_endpoint.h
kea /usr/include/kea/asiolink/tcp_socket.h
kea /usr/include/kea/asiolink/tls_acceptor.h
kea /usr/include/kea/asiolink/tls_socket.h
kea /usr/include/kea/asiolink/udp_endpoint.h
kea /usr/include/kea/asiolink/udp_socket.h
kea /usr/include/kea/asiolink/unix_domain_socket.h
kea /usr/include/kea/asiolink/unix_domain_socket_acceptor.h
kea /usr/include/kea/asiolink/unix_domain_socket_endpoint.h
kea /usr/include/kea/cc/
kea /usr/include/kea/cc/base_stamped_element.h
kea /usr/include/kea/cc/cfg_to_element.h
kea /usr/include/kea/cc/command_interpreter.h
kea /usr/include/kea/cc/data.h
kea /usr/include/kea/cc/dhcp_config_error.h
kea /usr/include/kea/cc/element_value.h
kea /usr/include/kea/cc/json_feed.h
kea /usr/include/kea/cc/server_tag.h
kea /usr/include/kea/cc/simple_parser.h
kea /usr/include/kea/cc/stamped_element.h
kea /usr/include/kea/cc/stamped_value.h
kea /usr/include/kea/cc/user_context.h
kea /usr/include/kea/cfgrpt/
kea /usr/include/kea/cfgrpt/config_report.h
kea /usr/include/kea/config.h
kea /usr/include/kea/config/
kea /usr/include/kea/config/base_command_mgr.h
kea /usr/include/kea/config/client_connection.h
kea /usr/include/kea/config/cmds_impl.h
kea /usr/include/kea/config/command_mgr.h
kea /usr/include/kea/config/config_log.h
kea /usr/include/kea/config/config_messages.h
kea /usr/include/kea/config/hooked_command_mgr.h
kea /usr/include/kea/config/timeouts.h
kea /usr/include/kea/config_backend/
kea /usr/include/kea/config_backend/base_config_backend.h
kea /usr/include/kea/config_backend/base_config_backend_mgr.h
kea /usr/include/kea/config_backend/base_config_backend_pool.h
kea /usr/include/kea/config_backend/constants.h
kea /usr/include/kea/cryptolink/
kea /usr/include/kea/cryptolink/crypto_hash.h
kea /usr/include/kea/cryptolink/crypto_hmac.h
kea /usr/include/kea/cryptolink/crypto_rng.h
kea /usr/include/kea/cryptolink/cryptolink.h
kea /usr/include/kea/cryptolink/openssl_common.h
kea /usr/include/kea/cryptolink/openssl_compat.h
kea /usr/include/kea/d2srv/
kea /usr/include/kea/d2srv/d2_cfg_mgr.h
kea /usr/include/kea/d2srv/d2_config.h
kea /usr/include/kea/d2srv/d2_log.h
kea /usr/include/kea/d2srv/d2_messages.h
kea /usr/include/kea/d2srv/d2_simple_parser.h
kea /usr/include/kea/database/
kea /usr/include/kea/database/audit_entry.h
kea /usr/include/kea/database/backend_selector.h
kea /usr/include/kea/database/database_connection.h
kea /usr/include/kea/database/db_exceptions.h
kea /usr/include/kea/database/db_log.h
kea /usr/include/kea/database/db_messages.h
kea /usr/include/kea/database/dbaccess_parser.h
kea /usr/include/kea/database/server.h
kea /usr/include/kea/database/server_collection.h
kea /usr/include/kea/database/server_selector.h
kea /usr/include/kea/dhcp/
kea /usr/include/kea/dhcp/classify.h
kea /usr/include/kea/dhcp/dhcp4.h
kea /usr/include/kea/dhcp/dhcp6.h
kea /usr/include/kea/dhcp/docsis3_option_defs.h
kea /usr/include/kea/dhcp/duid.h
kea /usr/include/kea/dhcp/duid_factory.h
kea /usr/include/kea/dhcp/hwaddr.h
kea /usr/include/kea/dhcp/iface_mgr.h
kea /usr/include/kea/dhcp/iface_mgr_error_handler.h
kea /usr/include/kea/dhcp/libdhcp++.h
kea /usr/include/kea/dhcp/opaque_data_tuple.h
kea /usr/include/kea/dhcp/option.h
kea /usr/include/kea/dhcp/option4_addrlst.h
kea /usr/include/kea/dhcp/option4_client_fqdn.h
kea /usr/include/kea/dhcp/option6_addrlst.h
kea /usr/include/kea/dhcp/option6_auth.h
kea /usr/include/kea/dhcp/option6_client_fqdn.h
kea /usr/include/kea/dhcp/option6_ia.h
kea /usr/include/kea/dhcp/option6_iaaddr.h
kea /usr/include/kea/dhcp/option6_iaprefix.h
kea /usr/include/kea/dhcp/option6_pdexclude.h
kea /usr/include/kea/dhcp/option6_status_code.h
kea /usr/include/kea/dhcp/option_custom.h
kea /usr/include/kea/dhcp/option_data_types.h
kea /usr/include/kea/dhcp/option_definition.h
kea /usr/include/kea/dhcp/option_int.h
kea /usr/include/kea/dhcp/option_int_array.h
kea /usr/include/kea/dhcp/option_opaque_data_tuples.h
kea /usr/include/kea/dhcp/option_space.h
kea /usr/include/kea/dhcp/option_space_container.h
kea /usr/include/kea/dhcp/option_string.h
kea /usr/include/kea/dhcp/option_vendor.h
kea /usr/include/kea/dhcp/option_vendor_class.h
kea /usr/include/kea/dhcp/packet_queue.h
kea /usr/include/kea/dhcp/packet_queue_mgr.h
kea /usr/include/kea/dhcp/packet_queue_mgr4.h
kea /usr/include/kea/dhcp/packet_queue_mgr6.h
kea /usr/include/kea/dhcp/packet_queue_ring.h
kea /usr/include/kea/dhcp/pkt.h
kea /usr/include/kea/dhcp/pkt4.h
kea /usr/include/kea/dhcp/pkt4o6.h
kea /usr/include/kea/dhcp/pkt6.h
kea /usr/include/kea/dhcp/pkt_filter.h
kea /usr/include/kea/dhcp/pkt_filter6.h
kea /usr/include/kea/dhcp/pkt_filter_inet.h
kea /usr/include/kea/dhcp/pkt_filter_inet6.h
kea /usr/include/kea/dhcp/pkt_filter_lpf.h
kea /usr/include/kea/dhcp/pkt_template.h
kea /usr/include/kea/dhcp/protocol_util.h
kea /usr/include/kea/dhcp/socket_info.h
kea /usr/include/kea/dhcp/std_option_defs.h
kea /usr/include/kea/dhcp_ddns/
kea /usr/include/kea/dhcp_ddns/dhcp_ddns_log.h
kea /usr/include/kea/dhcp_ddns/dhcp_ddns_messages.h
kea /usr/include/kea/dhcp_ddns/ncr_io.h
kea /usr/include/kea/dhcp_ddns/ncr_msg.h
kea /usr/include/kea/dhcp_ddns/ncr_udp.h
kea /usr/include/kea/dhcpsrv/
kea /usr/include/kea/dhcpsrv/alloc_engine.h
kea /usr/include/kea/dhcpsrv/alloc_engine_log.h
kea /usr/include/kea/dhcpsrv/alloc_engine_messages.h
kea /usr/include/kea/dhcpsrv/allocation_state.h
kea /usr/include/kea/dhcpsrv/allocator.h
kea /usr/include/kea/dhcpsrv/base_host_data_source.h
kea /usr/include/kea/dhcpsrv/cache_host_data_source.h
kea /usr/include/kea/dhcpsrv/callout_handle_store.h
kea /usr/include/kea/dhcpsrv/cb_ctl_dhcp.h
kea /usr/include/kea/dhcpsrv/cb_ctl_dhcp4.h
kea /usr/include/kea/dhcpsrv/cb_ctl_dhcp6.h
kea /usr/include/kea/dhcpsrv/cfg_4o6.h
kea /usr/include/kea/dhcpsrv/cfg_consistency.h
kea /usr/include/kea/dhcpsrv/cfg_db_access.h
kea /usr/include/kea/dhcpsrv/cfg_duid.h
kea /usr/include/kea/dhcpsrv/cfg_expiration.h
kea /usr/include/kea/dhcpsrv/cfg_globals.h
kea /usr/include/kea/dhcpsrv/cfg_host_operations.h
kea /usr/include/kea/dhcpsrv/cfg_hosts.h
kea /usr/include/kea/dhcpsrv/cfg_hosts_util.h
kea /usr/include/kea/dhcpsrv/cfg_iface.h
kea /usr/include/kea/dhcpsrv/cfg_mac_source.h
kea /usr/include/kea/dhcpsrv/cfg_multi_threading.h
kea /usr/include/kea/dhcpsrv/cfg_option.h
kea /usr/include/kea/dhcpsrv/cfg_option_def.h
kea /usr/include/kea/dhcpsrv/cfg_rsoo.h
kea /usr/include/kea/dhcpsrv/cfg_shared_networks.h
kea /usr/include/kea/dhcpsrv/cfg_subnets4.h
kea /usr/include/kea/dhcpsrv/cfg_subnets6.h
kea /usr/include/kea/dhcpsrv/cfgmgr.h
kea /usr/include/kea/dhcpsrv/client_class_def.h
kea /usr/include/kea/dhcpsrv/config_backend_dhcp4.h
kea /usr/include/kea/dhcpsrv/config_backend_dhcp4_mgr.h
kea /usr/include/kea/dhcpsrv/config_backend_dhcp6.h
kea /usr/include/kea/dhcpsrv/config_backend_dhcp6_mgr.h
kea /usr/include/kea/dhcpsrv/config_backend_pool_dhcp4.h
kea /usr/include/kea/dhcpsrv/config_backend_pool_dhcp6.h
kea /usr/include/kea/dhcpsrv/csv_lease_file4.h
kea /usr/include/kea/dhcpsrv/csv_lease_file6.h
kea /usr/include/kea/dhcpsrv/d2_client_cfg.h
kea /usr/include/kea/dhcpsrv/d2_client_mgr.h
kea /usr/include/kea/dhcpsrv/db_type.h
kea /usr/include/kea/dhcpsrv/dhcp4o6_ipc.h
kea /usr/include/kea/dhcpsrv/dhcpsrv_exceptions.h
kea /usr/include/kea/dhcpsrv/dhcpsrv_log.h
kea /usr/include/kea/dhcpsrv/dhcpsrv_messages.h
kea /usr/include/kea/dhcpsrv/flq_allocation_state.h
kea /usr/include/kea/dhcpsrv/flq_allocator.h
kea /usr/include/kea/dhcpsrv/host.h
kea /usr/include/kea/dhcpsrv/host_container.h
kea /usr/include/kea/dhcpsrv/host_data_source_factory.h
kea /usr/include/kea/dhcpsrv/host_mgr.h
kea /usr/include/kea/dhcpsrv/hosts_log.h
kea /usr/include/kea/dhcpsrv/hosts_messages.h
kea /usr/include/kea/dhcpsrv/ip_range.h
kea /usr/include/kea/dhcpsrv/ip_range_permutation.h
kea /usr/include/kea/dhcpsrv/iterative_allocation_state.h
kea /usr/include/kea/dhcpsrv/iterative_allocator.h
kea /usr/include/kea/dhcpsrv/key_from_key.h
kea /usr/include/kea/dhcpsrv/lease.h
kea /usr/include/kea/dhcpsrv/lease_file_loader.h
kea /usr/include/kea/dhcpsrv/lease_file_stats.h
kea /usr/include/kea/dhcpsrv/lease_mgr.h
kea /usr/include/kea/dhcpsrv/lease_mgr_factory.h
kea /usr/include/kea/dhcpsrv/memfile_lease_limits.h
kea /usr/include/kea/dhcpsrv/memfile_lease_mgr.h
kea /usr/include/kea/dhcpsrv/memfile_lease_storage.h
kea /usr/include/kea/dhcpsrv/mysql_host_data_source.h
kea /usr/include/kea/dhcpsrv/mysql_lease_mgr.h
kea /usr/include/kea/dhcpsrv/ncr_generator.h
kea /usr/include/kea/dhcpsrv/network.h
kea /usr/include/kea/dhcpsrv/network_state.h
kea /usr/include/kea/dhcpsrv/parsers/
kea /usr/include/kea/dhcpsrv/parsers/base_network_parser.h
kea /usr/include/kea/dhcpsrv/parsers/client_class_def_parser.h
kea /usr/include/kea/dhcpsrv/parsers/dhcp_parsers.h
kea /usr/include/kea/dhcpsrv/parsers/dhcp_queue_control_parser.h
kea /usr/include/kea/dhcpsrv/parsers/duid_config_parser.h
kea /usr/include/kea/dhcpsrv/parsers/expiration_config_parser.h
kea /usr/include/kea/dhcpsrv/parsers/host_reservation_parser.h
kea /usr/include/kea/dhcpsrv/parsers/host_reservations_list_parser.h
kea /usr/include/kea/dhcpsrv/parsers/ifaces_config_parser.h
kea /usr/include/kea/dhcpsrv/parsers/multi_threading_config_parser.h
kea /usr/include/kea/dhcpsrv/parsers/option_data_parser.h
kea /usr/include/kea/dhcpsrv/parsers/sanity_checks_parser.h
kea /usr/include/kea/dhcpsrv/parsers/shared_network_parser.h
kea /usr/include/kea/dhcpsrv/parsers/shared_networks_list_parser.h
kea /usr/include/kea/dhcpsrv/parsers/simple_parser4.h
kea /usr/include/kea/dhcpsrv/parsers/simple_parser6.h
kea /usr/include/kea/dhcpsrv/pgsql_host_data_source.h
kea /usr/include/kea/dhcpsrv/pgsql_lease_mgr.h
kea /usr/include/kea/dhcpsrv/pool.h
kea /usr/include/kea/dhcpsrv/random_allocation_state.h
kea /usr/include/kea/dhcpsrv/random_allocator.h
kea /usr/include/kea/dhcpsrv/resource_handler.h
kea /usr/include/kea/dhcpsrv/sanity_checker.h
kea /usr/include/kea/dhcpsrv/shared_network.h
kea /usr/include/kea/dhcpsrv/srv_config.h
kea /usr/include/kea/dhcpsrv/subnet.h
kea /usr/include/kea/dhcpsrv/subnet_id.h
kea /usr/include/kea/dhcpsrv/subnet_selector.h
kea /usr/include/kea/dhcpsrv/timer_mgr.h
kea /usr/include/kea/dhcpsrv/tracking_lease_mgr.h
kea /usr/include/kea/dhcpsrv/utils.h
kea /usr/include/kea/dhcpsrv/writable_host_data_source.h
kea /usr/include/kea/dns/
kea /usr/include/kea/dns/dns_fwd.h
kea /usr/include/kea/dns/edns.h
kea /usr/include/kea/dns/exceptions.h
kea /usr/include/kea/dns/labelsequence.h
kea /usr/include/kea/dns/master_lexer.h
kea /usr/include/kea/dns/master_lexer_inputsource.h
kea /usr/include/kea/dns/master_lexer_state.h
kea /usr/include/kea/dns/master_loader.h
kea /usr/include/kea/dns/master_loader_callbacks.h
kea /usr/include/kea/dns/masterload.h
kea /usr/include/kea/dns/message.h
kea /usr/include/kea/dns/messagerenderer.h
kea /usr/include/kea/dns/name.h
kea /usr/include/kea/dns/nsec3hash.h
kea /usr/include/kea/dns/opcode.h
kea /usr/include/kea/dns/qid_gen.h
kea /usr/include/kea/dns/question.h
kea /usr/include/kea/dns/rcode.h
kea /usr/include/kea/dns/rdata.h
kea /usr/include/kea/dns/rdata_pimpl_holder.h
kea /usr/include/kea/dns/rdataclass.h
kea /usr/include/kea/dns/rdatafields.h
kea /usr/include/kea/dns/rrclass.h
kea /usr/include/kea/dns/rrcollator.h
kea /usr/include/kea/dns/rrparamregistry.h
kea /usr/include/kea/dns/rrset.h
kea /usr/include/kea/dns/rrset_collection.h
kea /usr/include/kea/dns/rrset_collection_base.h
kea /usr/include/kea/dns/rrttl.h
kea /usr/include/kea/dns/rrtype.h
kea /usr/include/kea/dns/serial.h
kea /usr/include/kea/dns/tsig.h
kea /usr/include/kea/dns/tsigerror.h
kea /usr/include/kea/dns/tsigkey.h
kea /usr/include/kea/dns/tsigrecord.h
kea /usr/include/kea/dns/zone_checker.h
kea /usr/include/kea/eval/
kea /usr/include/kea/eval/dependency.h
kea /usr/include/kea/eval/eval_context.h
kea /usr/include/kea/eval/eval_context_decl.h
kea /usr/include/kea/eval/eval_log.h
kea /usr/include/kea/eval/eval_messages.h
kea /usr/include/kea/eval/evaluate.h
kea /usr/include/kea/eval/parser.h
kea /usr/include/kea/eval/token.h
kea /usr/include/kea/exceptions/
kea /usr/include/kea/exceptions/exceptions.h
kea /usr/include/kea/exceptions/isc_assert.h
kea /usr/include/kea/hooks/
kea /usr/include/kea/hooks/callout_handle.h
kea /usr/include/kea/hooks/callout_handle_associate.h
kea /usr/include/kea/hooks/callout_manager.h
kea /usr/include/kea/hooks/hooks.h
kea /usr/include/kea/hooks/hooks_config.h
kea /usr/include/kea/hooks/hooks_log.h
kea /usr/include/kea/hooks/hooks_manager.h
kea /usr/include/kea/hooks/hooks_messages.h
kea /usr/include/kea/hooks/hooks_parser.h
kea /usr/include/kea/hooks/libinfo.h
kea /usr/include/kea/hooks/library_handle.h
kea /usr/include/kea/hooks/library_manager.h
kea /usr/include/kea/hooks/library_manager_collection.h
kea /usr/include/kea/hooks/parking_lots.h
kea /usr/include/kea/hooks/pointer_converter.h
kea /usr/include/kea/hooks/server_hooks.h
kea /usr/include/kea/http/
kea /usr/include/kea/http/auth_config.h
kea /usr/include/kea/http/auth_log.h
kea /usr/include/kea/http/auth_messages.h
kea /usr/include/kea/http/basic_auth.h
kea /usr/include/kea/http/basic_auth_config.h
kea /usr/include/kea/http/client.h
kea /usr/include/kea/http/connection.h
kea /usr/include/kea/http/connection_pool.h
kea /usr/include/kea/http/date_time.h
kea /usr/include/kea/http/header_context.h
kea /usr/include/kea/http/http_acceptor.h
kea /usr/include/kea/http/http_header.h
kea /usr/include/kea/http/http_log.h
kea /usr/include/kea/http/http_message.h
kea /usr/include/kea/http/http_message_parser_base.h
kea /usr/include/kea/http/http_messages.h
kea /usr/include/kea/http/http_types.h
kea /usr/include/kea/http/listener.h
kea /usr/include/kea/http/listener_impl.h
kea /usr/include/kea/http/post_request.h
kea /usr/include/kea/http/post_request_json.h
kea /usr/include/kea/http/request.h
kea /usr/include/kea/http/request_context.h
kea /usr/include/kea/http/request_parser.h
kea /usr/include/kea/http/response.h
kea /usr/include/kea/http/response_context.h
kea /usr/include/kea/http/response_creator.h
kea /usr/include/kea/http/response_creator_factory.h
kea /usr/include/kea/http/response_json.h
kea /usr/include/kea/http/response_parser.h
kea /usr/include/kea/http/url.h
kea /usr/include/kea/kea_version.h
kea /usr/include/kea/log/
kea /usr/include/kea/log/buffer_appender_impl.h
kea /usr/include/kea/log/interprocess/
kea /usr/include/kea/log/interprocess/interprocess_sync.h
kea /usr/include/kea/log/interprocess/interprocess_sync_file.h
kea /usr/include/kea/log/interprocess/interprocess_sync_null.h
kea /usr/include/kea/log/log_dbglevels.h
kea /usr/include/kea/log/log_formatter.h
kea /usr/include/kea/log/log_messages.h
kea /usr/include/kea/log/logger.h
kea /usr/include/kea/log/logger_impl.h
kea /usr/include/kea/log/logger_level.h
kea /usr/include/kea/log/logger_level_impl.h
kea /usr/include/kea/log/logger_manager.h
kea /usr/include/kea/log/logger_manager_impl.h
kea /usr/include/kea/log/logger_name.h
kea /usr/include/kea/log/logger_specification.h
kea /usr/include/kea/log/logger_support.h
kea /usr/include/kea/log/logger_unittest_support.h
kea /usr/include/kea/log/logimpl_messages.h
kea /usr/include/kea/log/macros.h
kea /usr/include/kea/log/message_dictionary.h
kea /usr/include/kea/log/message_exception.h
kea /usr/include/kea/log/message_initializer.h
kea /usr/include/kea/log/message_reader.h
kea /usr/include/kea/log/message_types.h
kea /usr/include/kea/log/output_option.h
kea /usr/include/kea/mysql/
kea /usr/include/kea/mysql/mysql_binding.h
kea /usr/include/kea/mysql/mysql_connection.h
kea /usr/include/kea/mysql/mysql_constants.h
kea /usr/include/kea/pgsql/
kea /usr/include/kea/pgsql/pgsql_connection.h
kea /usr/include/kea/pgsql/pgsql_exchange.h
kea /usr/include/kea/process/
kea /usr/include/kea/process/cb_ctl_base.h
kea /usr/include/kea/process/config_base.h
kea /usr/include/kea/process/config_ctl_info.h
kea /usr/include/kea/process/config_ctl_parser.h
kea /usr/include/kea/process/d_cfg_mgr.h
kea /usr/include/kea/process/d_controller.h
kea /usr/include/kea/process/d_log.h
kea /usr/include/kea/process/d_process.h
kea /usr/include/kea/process/daemon.h
kea /usr/include/kea/process/log_parser.h
kea /usr/include/kea/process/logging_info.h
kea /usr/include/kea/process/process_messages.h
kea /usr/include/kea/process/redact_config.h
kea /usr/include/kea/stats/
kea /usr/include/kea/stats/context.h
kea /usr/include/kea/stats/observation.h
kea /usr/include/kea/stats/stats_mgr.h
kea /usr/include/kea/tcp/
kea /usr/include/kea/tcp/mt_tcp_listener_mgr.h
kea /usr/include/kea/tcp/tcp_connection.h
kea /usr/include/kea/tcp/tcp_connection_acceptor.h
kea /usr/include/kea/tcp/tcp_connection_pool.h
kea /usr/include/kea/tcp/tcp_listener.h
kea /usr/include/kea/tcp/tcp_log.h
kea /usr/include/kea/tcp/tcp_messages.h
kea /usr/include/kea/tcp/tcp_stream_msg.h
kea /usr/include/kea/util/
kea /usr/include/kea/util/bigints.h
kea /usr/include/kea/util/boost_time_utils.h
kea /usr/include/kea/util/buffer.h
kea /usr/include/kea/util/csv_file.h
kea /usr/include/kea/util/dhcp_space.h
kea /usr/include/kea/util/doubles.h
kea /usr/include/kea/util/encode/
kea /usr/include/kea/util/encode/base16_from_binary.h
kea /usr/include/kea/util/encode/base32hex.h
kea /usr/include/kea/util/encode/base32hex_from_binary.h
kea /usr/include/kea/util/encode/base64.h
kea /usr/include/kea/util/encode/binary_from_base16.h
kea /usr/include/kea/util/encode/binary_from_base32hex.h
kea /usr/include/kea/util/encode/hex.h
kea /usr/include/kea/util/encode/utf8.h
kea /usr/include/kea/util/file_utilities.h
kea /usr/include/kea/util/filename.h
kea /usr/include/kea/util/hash.h
kea /usr/include/kea/util/io/
kea /usr/include/kea/util/io/fd.h
kea /usr/include/kea/util/io/fd_share.h
kea /usr/include/kea/util/io/pktinfo_utilities.h
kea /usr/include/kea/util/io/sockaddr_util.h
kea /usr/include/kea/util/io_utilities.h
kea /usr/include/kea/util/labeled_value.h
kea /usr/include/kea/util/memory_segment.h
kea /usr/include/kea/util/memory_segment_local.h
kea /usr/include/kea/util/multi_threading_mgr.h
kea /usr/include/kea/util/optional.h
kea /usr/include/kea/util/pid_file.h
kea /usr/include/kea/util/pointer_util.h
kea /usr/include/kea/util/range_utilities.h
kea /usr/include/kea/util/readwrite_mutex.h
kea /usr/include/kea/util/reconnect_ctl.h
kea /usr/include/kea/util/staged_value.h
kea /usr/include/kea/util/state_model.h
kea /usr/include/kea/util/stopwatch.h
kea /usr/include/kea/util/stopwatch_impl.h
kea /usr/include/kea/util/strutil.h
kea /usr/include/kea/util/thread_pool.h
kea /usr/include/kea/util/time_utilities.h
kea /usr/include/kea/util/triplet.h
kea /usr/include/kea/util/unlock_guard.h
kea /usr/include/kea/util/versioned_csv_file.h
kea /usr/include/kea/util/watch_socket.h
kea /usr/include/kea/util/watched_thread.h
kea /usr/lib/
kea /usr/lib/kea/
kea /usr/lib/kea/hooks/
kea /usr/lib/kea/hooks/libdhcp_bootp.so
kea /usr/lib/kea/hooks/libdhcp_flex_option.so
kea /usr/lib/kea/hooks/libdhcp_ha.so
kea /usr/lib/kea/hooks/libdhcp_lease_cmds.so
kea /usr/lib/kea/hooks/libdhcp_mysql_cb.so
kea /usr/lib/kea/hooks/libdhcp_pgsql_cb.so
kea /usr/lib/kea/hooks/libdhcp_run_script.so
kea /usr/lib/kea/hooks/libdhcp_stat_cmds.so
kea /usr/lib/libkea-asiodns.so
kea /usr/lib/libkea-asiodns.so.35
kea /usr/lib/libkea-asiodns.so.35.0.0
kea /usr/lib/libkea-asiolink.so
kea /usr/lib/libkea-asiolink.so.56
kea /usr/lib/libkea-asiolink.so.56.0.0
kea /usr/lib/libkea-cc.so
kea /usr/lib/libkea-cc.so.54
kea /usr/lib/libkea-cc.so.54.0.0
kea /usr/lib/libkea-cfgclient.so
kea /usr/lib/libkea-cfgclient.so.51
kea /usr/lib/libkea-cfgclient.so.51.0.0
kea /usr/lib/libkea-cryptolink.so
kea /usr/lib/libkea-cryptolink.so.38
kea /usr/lib/libkea-cryptolink.so.38.0.0
kea /usr/lib/libkea-d2srv.so
kea /usr/lib/libkea-d2srv.so.30
kea /usr/lib/libkea-d2srv.so.30.0.0
kea /usr/lib/libkea-database.so
kea /usr/lib/libkea-database.so.48
kea /usr/lib/libkea-database.so.48.0.0
kea /usr/lib/libkea-dhcp++.so
kea /usr/lib/libkea-dhcp++.so.74
kea /usr/lib/libkea-dhcp++.so.74.0.0
kea /usr/lib/libkea-dhcp_ddns.so
kea /usr/lib/libkea-dhcp_ddns.so.41
kea /usr/lib/libkea-dhcp_ddns.so.41.0.0
kea /usr/lib/libkea-dhcpsrv.so
kea /usr/lib/libkea-dhcpsrv.so.90
kea /usr/lib/libkea-dhcpsrv.so.90.0.0
kea /usr/lib/libkea-dns++.so
kea /usr/lib/libkea-dns++.so.42
kea /usr/lib/libkea-dns++.so.42.0.0
kea /usr/lib/libkea-eval.so
kea /usr/lib/libkea-eval.so.52
kea /usr/lib/libkea-eval.so.52.0.0
kea /usr/lib/libkea-exceptions.so
kea /usr/lib/libkea-exceptions.so.23
kea /usr/lib/libkea-exceptions.so.23.0.0
kea /usr/lib/libkea-hooks.so
kea /usr/lib/libkea-hooks.so.78
kea /usr/lib/libkea-hooks.so.78.0.0
kea /usr/lib/libkea-http.so
kea /usr/lib/libkea-http.so.56
kea /usr/lib/libkea-http.so.56.0.0
kea /usr/lib/libkea-log.so
kea /usr/lib/libkea-log.so.48
kea /usr/lib/libkea-log.so.48.0.0
kea /usr/lib/libkea-mysql.so
kea /usr/lib/libkea-mysql.so.53
kea /usr/lib/libkea-mysql.so.53.0.0
kea /usr/lib/libkea-pgsql.so
kea /usr/lib/libkea-pgsql.so.53
kea /usr/lib/libkea-pgsql.so.53.0.0
kea /usr/lib/libkea-process.so
kea /usr/lib/libkea-process.so.57
kea /usr/lib/libkea-process.so.57.0.0
kea /usr/lib/libkea-stats.so
kea /usr/lib/libkea-stats.so.29
kea /usr/lib/libkea-stats.so.29.0.0
kea /usr/lib/libkea-tcp.so
kea /usr/lib/libkea-tcp.so.5
kea /usr/lib/libkea-tcp.so.5.0.0
kea /usr/lib/libkea-util-io.so
kea /usr/lib/libkea-util-io.so.0
kea /usr/lib/libkea-util-io.so.0.0.1
kea /usr/lib/libkea-util.so
kea /usr/lib/libkea-util.so.68
kea /usr/lib/libkea-util.so.68.0.0
kea /usr/lib/python3.1/
kea /usr/lib/python3.1/site-packages/
kea /usr/lib/python3.1/site-packages/kea/
kea /usr/lib/python3.1/site-packages/kea/__pycache__/
kea /usr/lib/python3.1/site-packages/kea/__pycache__/kea_conn.cpython-311.opt-1.pyc
kea /usr/lib/python3.1/site-packages/kea/__pycache__/kea_conn.cpython-311.pyc
kea /usr/lib/python3.1/site-packages/kea/__pycache__/kea_connector3.cpython-311.opt-1.pyc
kea /usr/lib/python3.1/site-packages/kea/__pycache__/kea_connector3.cpython-311.pyc
kea /usr/lib/python3.1/site-packages/kea/kea_conn.py
kea /usr/lib/python3.1/site-packages/kea/kea_connector3.py
kea /usr/lib/systemd/
kea /usr/lib/systemd/system/
kea /usr/lib/systemd/system/kea-ctrl-agent.service
kea /usr/lib/systemd/system/kea-dhcp-ddns.service
kea /usr/lib/systemd/system/kea-dhcp4.service
kea /usr/lib/systemd/system/kea-dhcp6.service
kea /usr/lib/tmpfiles.d/
kea /usr/lib/tmpfiles.d/kea.conf
kea /usr/share/
kea /usr/share/kea/
kea /usr/share/kea/api/
kea /usr/share/kea/api/build-report.json
kea /usr/share/kea/api/cache-clear.json
kea /usr/share/kea/api/cache-flush.json
kea /usr/share/kea/api/cache-get-by-id.json
kea /usr/share/kea/api/cache-get.json
kea /usr/share/kea/api/cache-insert.json
kea /usr/share/kea/api/cache-load.json
kea /usr/share/kea/api/cache-remove.json
kea /usr/share/kea/api/cache-size.json
kea /usr/share/kea/api/cache-write.json
kea /usr/share/kea/api/class-add.json
kea /usr/share/kea/api/class-del.json
kea /usr/share/kea/api/class-get.json
kea /usr/share/kea/api/class-list.json
kea /usr/share/kea/api/class-update.json
kea /usr/share/kea/api/config-backend-pull.json
kea /usr/share/kea/api/config-get.json
kea /usr/share/kea/api/config-hash-get.json
kea /usr/share/kea/api/config-reload.json
kea /usr/share/kea/api/config-set.json
kea /usr/share/kea/api/config-test.json
kea /usr/share/kea/api/config-write.json
kea /usr/share/kea/api/dhcp-disable.json
kea /usr/share/kea/api/dhcp-enable.json
kea /usr/share/kea/api/extended-info4-upgrade.json
kea /usr/share/kea/api/gss-tsig-get-all.json
kea /usr/share/kea/api/gss-tsig-get.json
kea /usr/share/kea/api/gss-tsig-key-del.json
kea /usr/share/kea/api/gss-tsig-key-expire.json
kea /usr/share/kea/api/gss-tsig-key-get.json
kea /usr/share/kea/api/gss-tsig-list.json
kea /usr/share/kea/api/gss-tsig-purge-all.json
kea /usr/share/kea/api/gss-tsig-purge.json
kea /usr/share/kea/api/gss-tsig-rekey-all.json
kea /usr/share/kea/api/gss-tsig-rekey.json
kea /usr/share/kea/api/ha-continue.json
kea /usr/share/kea/api/ha-heartbeat.json
kea /usr/share/kea/api/ha-maintenance-cancel.json
kea /usr/share/kea/api/ha-maintenance-notify.json
kea /usr/share/kea/api/ha-maintenance-start.json
kea /usr/share/kea/api/ha-reset.json
kea /usr/share/kea/api/ha-scopes.json
kea /usr/share/kea/api/ha-sync-complete-notify.json
kea /usr/share/kea/api/ha-sync.json
kea /usr/share/kea/api/lease4-add.json
kea /usr/share/kea/api/lease4-del.json
kea /usr/share/kea/api/lease4-get-all.json
kea /usr/share/kea/api/lease4-get-by-client-id.json
kea /usr/share/kea/api/lease4-get-by-hostname.json
kea /usr/share/kea/api/lease4-get-by-hw-address.json
kea /usr/share/kea/api/lease4-get-page.json
kea /usr/share/kea/api/lease4-get.json
kea /usr/share/kea/api/lease4-resend-ddns.json
kea /usr/share/kea/api/lease4-update.json
kea /usr/share/kea/api/lease4-wipe.json
kea /usr/share/kea/api/lease4-write.json
kea /usr/share/kea/api/lease6-add.json
kea /usr/share/kea/api/lease6-bulk-apply.json
kea /usr/share/kea/api/lease6-del.json
kea /usr/share/kea/api/lease6-get-all.json
kea /usr/share/kea/api/lease6-get-by-duid.json
kea /usr/share/kea/api/lease6-get-by-hostname.json
kea /usr/share/kea/api/lease6-get-page.json
kea /usr/share/kea/api/lease6-get.json
kea /usr/share/kea/api/lease6-resend-ddns.json
kea /usr/share/kea/api/lease6-update.json
kea /usr/share/kea/api/lease6-wipe.json
kea /usr/share/kea/api/lease6-write.json
kea /usr/share/kea/api/leases-reclaim.json
kea /usr/share/kea/api/libreload.json
kea /usr/share/kea/api/list-commands.json
kea /usr/share/kea/api/network4-add.json
kea /usr/share/kea/api/network4-del.json
kea /usr/share/kea/api/network4-get.json
kea /usr/share/kea/api/network4-list.json
kea /usr/share/kea/api/network4-subnet-add.json
kea /usr/share/kea/api/network4-subnet-del.json
kea /usr/share/kea/api/network6-add.json
kea /usr/share/kea/api/network6-del.json
kea /usr/share/kea/api/network6-get.json
kea /usr/share/kea/api/network6-list.json
kea /usr/share/kea/api/network6-subnet-add.json
kea /usr/share/kea/api/network6-subnet-del.json
kea /usr/share/kea/api/remote-class4-del.json
kea /usr/share/kea/api/remote-class4-get-all.json
kea /usr/share/kea/api/remote-class4-get.json
kea /usr/share/kea/api/remote-class4-set.json
kea /usr/share/kea/api/remote-class6-del.json
kea /usr/share/kea/api/remote-class6-get-all.json
kea /usr/share/kea/api/remote-class6-get.json
kea /usr/share/kea/api/remote-class6-set.json
kea /usr/share/kea/api/remote-global-parameter4-del.json
kea /usr/share/kea/api/remote-global-parameter4-get-all.json
kea /usr/share/kea/api/remote-global-parameter4-get.json
kea /usr/share/kea/api/remote-global-parameter4-set.json
kea /usr/share/kea/api/remote-global-parameter6-del.json
kea /usr/share/kea/api/remote-global-parameter6-get-all.json
kea /usr/share/kea/api/remote-global-parameter6-get.json
kea /usr/share/kea/api/remote-global-parameter6-set.json
kea /usr/share/kea/api/remote-network4-del.json
kea /usr/share/kea/api/remote-network4-get.json
kea /usr/share/kea/api/remote-network4-list.json
kea /usr/share/kea/api/remote-network4-set.json
kea /usr/share/kea/api/remote-network6-del.json
kea /usr/share/kea/api/remote-network6-get.json
kea /usr/share/kea/api/remote-network6-list.json
kea /usr/share/kea/api/remote-network6-set.json
kea /usr/share/kea/api/remote-option-def4-del.json
kea /usr/share/kea/api/remote-option-def4-get-all.json
kea /usr/share/kea/api/remote-option-def4-get.json
kea /usr/share/kea/api/remote-option-def4-set.json
kea /usr/share/kea/api/remote-option-def6-del.json
kea /usr/share/kea/api/remote-option-def6-get-all.json
kea /usr/share/kea/api/remote-option-def6-get.json
kea /usr/share/kea/api/remote-option-def6-set.json
kea /usr/share/kea/api/remote-option4-global-del.json
kea /usr/share/kea/api/remote-option4-global-get-all.json
kea /usr/share/kea/api/remote-option4-global-get.json
kea /usr/share/kea/api/remote-option4-global-set.json
kea /usr/share/kea/api/remote-option4-network-del.json
kea /usr/share/kea/api/remote-option4-network-set.json
kea /usr/share/kea/api/remote-option4-pool-del.json
kea /usr/share/kea/api/remote-option4-pool-set.json
kea /usr/share/kea/api/remote-option4-subnet-del.json
kea /usr/share/kea/api/remote-option4-subnet-set.json
kea /usr/share/kea/api/remote-option6-global-del.json
kea /usr/share/kea/api/remote-option6-global-get-all.json
kea /usr/share/kea/api/remote-option6-global-get.json
kea /usr/share/kea/api/remote-option6-global-set.json
kea /usr/share/kea/api/remote-option6-network-del.json
kea /usr/share/kea/api/remote-option6-network-set.json
kea /usr/share/kea/api/remote-option6-pd-pool-del.json
kea /usr/share/kea/api/remote-option6-pd-pool-set.json
kea /usr/share/kea/api/remote-option6-pool-del.json
kea /usr/share/kea/api/remote-option6-pool-set.json
kea /usr/share/kea/api/remote-option6-subnet-del.json
kea /usr/share/kea/api/remote-option6-subnet-set.json
kea /usr/share/kea/api/remote-server4-del.json
kea /usr/share/kea/api/remote-server4-get-all.json
kea /usr/share/kea/api/remote-server4-get.json
kea /usr/share/kea/api/remote-server4-set.json
kea /usr/share/kea/api/remote-server6-del.json
kea /usr/share/kea/api/remote-server6-get-all.json
kea /usr/share/kea/api/remote-server6-get.json
kea /usr/share/kea/api/remote-server6-set.json
kea /usr/share/kea/api/remote-subnet4-del-by-id.json
kea /usr/share/kea/api/remote-subnet4-del-by-prefix.json
kea /usr/share/kea/api/remote-subnet4-get-by-id.json
kea /usr/share/kea/api/remote-subnet4-get-by-prefix.json
kea /usr/share/kea/api/remote-subnet4-list.json
kea /usr/share/kea/api/remote-subnet4-set.json
kea /usr/share/kea/api/remote-subnet6-del-by-id.json
kea /usr/share/kea/api/remote-subnet6-del-by-prefix.json
kea /usr/share/kea/api/remote-subnet6-get-by-id.json
kea /usr/share/kea/api/remote-subnet6-get-by-prefix.json
kea /usr/share/kea/api/remote-subnet6-list.json
kea /usr/share/kea/api/remote-subnet6-set.json
kea /usr/share/kea/api/reservation-add.json
kea /usr/share/kea/api/reservation-del.json
kea /usr/share/kea/api/reservation-get-all.json
kea /usr/share/kea/api/reservation-get-by-address.json
kea /usr/share/kea/api/reservation-get-by-hostname.json
kea /usr/share/kea/api/reservation-get-by-id.json
kea /usr/share/kea/api/reservation-get-page.json
kea /usr/share/kea/api/reservation-get.json
kea /usr/share/kea/api/reservation-update.json
kea /usr/share/kea/api/server-tag-get.json
kea /usr/share/kea/api/shutdown.json
kea /usr/share/kea/api/stat-lease4-get.json
kea /usr/share/kea/api/stat-lease6-get.json
kea /usr/share/kea/api/statistic-get-all.json
kea /usr/share/kea/api/statistic-get.json
kea /usr/share/kea/api/statistic-remove-all.json
kea /usr/share/kea/api/statistic-remove.json
kea /usr/share/kea/api/statistic-reset-all.json
kea /usr/share/kea/api/statistic-reset.json
kea /usr/share/kea/api/statistic-sample-age-set-all.json
kea /usr/share/kea/api/statistic-sample-age-set.json
kea /usr/share/kea/api/statistic-sample-count-set-all.json
kea /usr/share/kea/api/statistic-sample-count-set.json
kea /usr/share/kea/api/status-get.json
kea /usr/share/kea/api/subnet4-add.json
kea /usr/share/kea/api/subnet4-del.json
kea /usr/share/kea/api/subnet4-delta-add.json
kea /usr/share/kea/api/subnet4-delta-del.json
kea /usr/share/kea/api/subnet4-get.json
kea /usr/share/kea/api/subnet4-list.json
kea /usr/share/kea/api/subnet4-update.json
kea /usr/share/kea/api/subnet6-add.json
kea /usr/share/kea/api/subnet6-del.json
kea /usr/share/kea/api/subnet6-delta-add.json
kea /usr/share/kea/api/subnet6-delta-del.json
kea /usr/share/kea/api/subnet6-get.json
kea /usr/share/kea/api/subnet6-list.json
kea /usr/share/kea/api/subnet6-update.json
kea /usr/share/kea/api/version-get.json
kea /usr/share/kea/scripts/
kea /usr/share/kea/scripts/admin-utils.sh
kea /usr/share/kea/scripts/mysql/
kea /usr/share/kea/scripts/mysql/dhcpdb_create.mysql
kea /usr/share/kea/scripts/mysql/dhcpdb_drop.mysql
kea /usr/share/kea/scripts/mysql/upgrade_001.0_to_002.0.sh
kea /usr/share/kea/scripts/mysql/upgrade_002.0_to_003.0.sh
kea /usr/share/kea/scripts/mysql/upgrade_003.0_to_004.0.sh
kea /usr/share/kea/scripts/mysql/upgrade_004.0_to_004.1.sh
kea /usr/share/kea/scripts/mysql/upgrade_004.1_to_005.0.sh
kea /usr/share/kea/scripts/mysql/upgrade_005.0_to_005.1.sh
kea /usr/share/kea/scripts/mysql/upgrade_005.1_to_005.2.sh
kea /usr/share/kea/scripts/mysql/upgrade_005.2_to_006.0.sh
kea /usr/share/kea/scripts/mysql/upgrade_006.0_to_007.0.sh
kea /usr/share/kea/scripts/mysql/upgrade_007.0_to_008.0.sh
kea /usr/share/kea/scripts/mysql/upgrade_008.0_to_008.1.sh
kea /usr/share/kea/scripts/mysql/upgrade_008.1_to_008.2.sh
kea /usr/share/kea/scripts/mysql/upgrade_008.2_to_009.0.sh
kea /usr/share/kea/scripts/mysql/upgrade_009.0_to_009.1.sh
kea /usr/share/kea/scripts/mysql/upgrade_009.1_to_009.2.sh
kea /usr/share/kea/scripts/mysql/upgrade_009.2_to_009.3.sh
kea /usr/share/kea/scripts/mysql/upgrade_009.3_to_009.4.sh
kea /usr/share/kea/scripts/mysql/upgrade_009.4_to_009.5.sh
kea /usr/share/kea/scripts/mysql/upgrade_009.5_to_009.6.sh
kea /usr/share/kea/scripts/mysql/upgrade_009.6_to_010.0.sh
kea /usr/share/kea/scripts/mysql/upgrade_010_to_011.sh
kea /usr/share/kea/scripts/mysql/upgrade_011_to_012.sh
kea /usr/share/kea/scripts/mysql/upgrade_012_to_013.sh
kea /usr/share/kea/scripts/mysql/upgrade_013_to_014.sh
kea /usr/share/kea/scripts/mysql/upgrade_014_to_015.sh
kea /usr/share/kea/scripts/mysql/upgrade_015_to_016.sh
kea /usr/share/kea/scripts/mysql/upgrade_016_to_017.sh
kea /usr/share/kea/scripts/mysql/upgrade_017_to_018.sh
kea /usr/share/kea/scripts/mysql/upgrade_018_to_019.sh
kea /usr/share/kea/scripts/mysql/wipe_data.sh
kea /usr/share/kea/scripts/pgsql/
kea /usr/share/kea/scripts/pgsql/dhcpdb_create.pgsql
kea /usr/share/kea/scripts/pgsql/dhcpdb_drop.pgsql
kea /usr/share/kea/scripts/pgsql/upgrade_001.0_to_002.0.sh
kea /usr/share/kea/scripts/pgsql/upgrade_002.0_to_003.0.sh
kea /usr/share/kea/scripts/pgsql/upgrade_003.0_to_003.1.sh
kea /usr/share/kea/scripts/pgsql/upgrade_003.1_to_003.2.sh
kea /usr/share/kea/scripts/pgsql/upgrade_003.2_to_003.3.sh
kea /usr/share/kea/scripts/pgsql/upgrade_003.3_to_004.0.sh
kea /usr/share/kea/scripts/pgsql/upgrade_004.0_to_005.0.sh
kea /usr/share/kea/scripts/pgsql/upgrade_005.0_to_005.1.sh
kea /usr/share/kea/scripts/pgsql/upgrade_005.1_to_006.0.sh
kea /usr/share/kea/scripts/pgsql/upgrade_006.0_to_006.1.sh
kea /usr/share/kea/scripts/pgsql/upgrade_006.1_to_006.2.sh
kea /usr/share/kea/scripts/pgsql/upgrade_006.2_to_007.0.sh
kea /usr/share/kea/scripts/pgsql/upgrade_007_to_008.sh
kea /usr/share/kea/scripts/pgsql/upgrade_008_to_009.sh
kea /usr/share/kea/scripts/pgsql/upgrade_009_to_010.sh
kea /usr/share/kea/scripts/pgsql/upgrade_010_to_011.sh
kea /usr/share/kea/scripts/pgsql/upgrade_011_to_012.sh
kea /usr/share/kea/scripts/pgsql/upgrade_012_to_013.sh
kea /usr/share/kea/scripts/pgsql/upgrade_013_to_014.sh
kea /usr/share/kea/scripts/pgsql/upgrade_014_to_015.sh
kea /usr/share/kea/scripts/pgsql/upgrade_015_to_016.sh
kea /usr/share/kea/scripts/pgsql/upgrade_016_to_017.sh
kea /usr/share/kea/scripts/pgsql/upgrade_017_to_018.sh
kea /usr/share/kea/scripts/pgsql/wipe_data.sh
kea /var/
kea /var/lib/
kea /var/lib/kea/
kea /var/log/

Dokumentation

Eine ausführliche Onlinedokumentation des modernen Open Source DHCPv4 & DHCPv6 Server Kea findet sich auf der entsprechenden Dokumentationsseite bei Read the Docs → https://kea.readthedocs.io/en/latest/ .

Konfiguration

Die Konfiguration unseres DHCPv4 und DHCPv6-Servers wie auch des Controll-Agenten und ggf. des Kea DHCP DDNS Daemaons erfolgt über JSON-Konfigurationsdateien im Verzeichnis /etc/kea/.

DHCPv4 Server

Zunächst wollen wir uns eingehend mit der Konfiguration unseres DHCPv4-Daemons befassen. Die zugehörige Original-Dokumentation findet sich im Abschnitt 8.2. DHCPv4 Server Configuration.

In unserer Betriebsumgebung haben wir folgende Rahmenbedingungen für unseren DHCPv4-Server:

Netzwerkinterface :
Unser DHCPv4-Daemon soll auf dem Netzwerkinterface eth1 auf entsprechende Adressanfragen lauschen und ausliefern.
Leases :
In unserer Beispielumgebung sollen die Leases unserer Clients in der Datei /var/lib/kea/dhcp4.leases vorgehalten werden. Optional wäre auch die Speicherung in einer MariaDB bzw. mySQL-Datenbank oder in einer PostgreSQL-Datenbank denkbar. Aber im ersten Schritt wollen wir uns mal mit einer Ablage in einer Datei begnügen.
Name-Server :
Der interne DNS-Daemon ist unter der IP-Adresse 10.0.0.27 erreichbar.
Domain-Name :
Der Name unserer Domain lautet nausch.org.
Domain-Search-Liste :
Der DHCPv4-Server soll als Domain-Search-List ausgeben: "edmz.nausch.org, idmz.nausch.org, intra.nausch.org"
Time-Server :
Der interne Time-Server ist unter der IP-Adresse 10.0.0.17 erreichbar.
Router :
Der Default-Router ist unter der IP-Adresse 10.0.0.17 erreichbar.
Subnetz :
Der DHCPv4-Server ist zuständig für das Netz 10.0.10.0/24
Pool (dynamischer Adress-Bereich) :
Dynamische IP-Adressen sollen aus dem Bereich von 10.0.10.230 - 10.0.10.250 vergeben werden.

Bei der Installation unseres Kea-Servers wurde uns eine entsprechende Musterkonfigurations-Datei bereits mitgeliefert.

 # less /etc/kea/kea-dhcp4.conf

/etc/kea/kea-dhcp4.conf

// This is a basic configuration for the Kea DHCPv4 server. Subnet declarations
// are mostly commented out and no interfaces are listed. Therefore, the servers
// will not listen or respond to any queries.
// The basic configuration must be extended to specify interfaces on which
// the servers should listen. There are a number of example options defined.
// These probably don't make any sense in your network. Make sure you at least
// update the following, before running this example in your network:
// - change the network interface names
// - change the subnets to match your actual network
// - change the option values to match your network
//
// This is just a very basic configuration. Kea comes with large suite (over 30)
// of configuration examples and extensive Kea User's Guide. Please refer to
// those materials to get better understanding of what this software is able to
// do. Comments in this configuration file sometimes refer to sections for more
// details. These are section numbers in Kea User's Guide. The version matching
// your software should come with your Kea package, but it is also available
// in ISC's Knowledgebase (https://kea.readthedocs.io; the direct link for
// the stable version is https://kea.readthedocs.io/).
//
// This configuration file contains only DHCPv4 server's configuration.
// If configurations for other Kea services are also included in this file they
// are ignored by the DHCPv4 server.
{

// DHCPv4 configuration starts here. This section will be read by DHCPv4 server
// and will be ignored by other components.
"Dhcp4": {
    // Add names of your network interfaces to listen on.
    "interfaces-config": {
        // See section 8.2.4 for more details. You probably want to add just
        // interface name (e.g. "eth0" or specific IPv4 address on that
        // interface name (e.g. "eth0/192.0.2.1").
        "interfaces": [ ]

        // Kea DHCPv4 server by default listens using raw sockets. This ensures
        // all packets, including those sent by directly connected clients
        // that don't have IPv4 address yet, are received. However, if your
        // traffic is always relayed, it is often better to use regular
        // UDP sockets. If you want to do that, uncomment this line:
        // "dhcp-socket-type": "udp"
    },

    // Kea supports control channel, which is a way to receive management
    // commands while the server is running. This is a Unix domain socket that
    // receives commands formatted in JSON, e.g. config-set (which sets new
    // configuration), config-reload (which tells Kea to reload its
    // configuration from file), statistic-get (to retrieve statistics) and many
    // more. For detailed description, see Sections 8.8, 16 and 15.
    "control-socket": {
        "socket-type": "unix",
        "socket-name": "/tmp/kea4-ctrl-socket"
    },

    // Use Memfile lease database backend to store leases in a CSV file.
    // Depending on how Kea was compiled, it may also support SQL databases
    // (MySQL and/or PostgreSQL). Those database backends require more
    // parameters, like name, host and possibly user and password.
    // There are dedicated examples for each backend. See Section 7.2.2 "Lease
    // Storage" for details.
    "lease-database": {
        // Memfile is the simplest and easiest backend to use. It's an in-memory
        // C++ database that stores its state in CSV file.
        "type": "memfile",
        "lfc-interval": 3600
    },

    // Kea allows storing host reservations in a database. If your network is
    // small or you have few reservations, it's probably easier to keep them
    // in the configuration file. If your network is large, it's usually better
    // to use database for it. To enable it, uncomment the following:
    // "hosts-database": {
    //     "type": "mysql",
    //     "name": "kea",
    //     "user": "kea",
    //     "password": "kea",
    //     "host": "localhost",
    //     "port": 3306
    // },
    // See Section 7.2.3 "Hosts storage" for details.

    // Setup reclamation of the expired leases and leases affinity.
    // Expired leases will be reclaimed every 10 seconds. Every 25
    // seconds reclaimed leases, which have expired more than 3600
    // seconds ago, will be removed. The limits for leases reclamation
    // are 100 leases or 250 ms for a single cycle. A warning message
    // will be logged if there are still expired leases in the
    // database after 5 consecutive reclamation cycles.
    // If both "flush-reclaimed-timer-wait-time" and "hold-reclaimed-time" are
    // not 0, when the client sends a release message the lease is expired
    // instead of being deleted from the lease storage.
    "expired-leases-processing": {
        "reclaim-timer-wait-time": 10,
        "flush-reclaimed-timer-wait-time": 25,
        "hold-reclaimed-time": 3600,
        "max-reclaim-leases": 100,
        "max-reclaim-time": 250,
        "unwarned-reclaim-cycles": 5
    },

    // Global timers specified here apply to all subnets, unless there are
    // subnet specific values defined in particular subnets.
    "renew-timer": 900,
    "rebind-timer": 1800,
    "valid-lifetime": 3600,

    // Many additional parameters can be specified here:
    // - option definitions (if you want to define vendor options, your own
    //                       custom options or perhaps handle standard options
    //                       that Kea does not support out of the box yet)
    // - client classes
    // - hooks
    // - ddns information (how the DHCPv4 component can reach a DDNS daemon)
    //
    // Some of them have examples below, but there are other parameters.
    // Consult Kea User's Guide to find out about them.

    // These are global options. They are going to be sent when a client
    // requests them, unless overwritten with values in more specific scopes.
    // The scope hierarchy is:
    // - global (most generic, can be overwritten by class, subnet or host)
    // - class (can be overwritten by subnet or host)
    // - subnet (can be overwritten by host)
    // - host (most specific, overwrites any other scopes)
    //
    // Not all of those options make sense. Please configure only those that
    // are actually useful in your network.
    //
    // For a complete list of options currently supported by Kea, see
    // Section 7.2.8 "Standard DHCPv4 Options". Kea also supports
    // vendor options (see Section 7.2.10) and allows users to define their
    // own custom options (see Section 7.2.9).
    "option-data": [
        // When specifying options, you typically need to specify
        // one of (name or code) and data. The full option specification
        // covers name, code, space, csv-format and data.
        // space defaults to "dhcp4" which is usually correct, unless you
        // use encapsulate options. csv-format defaults to "true", so
        // this is also correct, unless you want to specify the whole
        // option value as long hex string. For example, to specify
        // domain-name-servers you could do this:
        // {
        //     "name": "domain-name-servers",
        //     "code": 6,
        //     "csv-format": "true",
        //     "space": "dhcp4",
        //     "data": "192.0.2.1, 192.0.2.2"
        // }
        // but it's a lot of writing, so it's easier to do this instead:
        {
            "name": "domain-name-servers",
            "data": "192.0.2.1, 192.0.2.2"
        },

        // Typically people prefer to refer to options by their names, so they
        // don't need to remember the code names. However, some people like
        // to use numerical values. For example, option "domain-name" uses
        // option code 15, so you can reference to it either by
        // "name": "domain-name" or "code": 15.
        {
            "code": 15,
            "data": "example.org"
        },

        // Domain search is also a popular option. It tells the client to
        // attempt to resolve names within those specified domains. For
        // example, name "foo" would be attempted to be resolved as
        // foo.mydomain.example.com and if it fails, then as foo.example.com
        {
            "name": "domain-search",
            "data": "mydomain.example.com, example.com"
        },

        // String options that have a comma in their values need to have
        // it escaped (i.e. each comma is preceded by two backslashes).
        // That's because commas are reserved for separating fields in
        // compound options. At the same time, we need to be conformant
        // with JSON spec, that does not allow "\,". Therefore the
        // slightly uncommon double backslashes notation is needed.

        // Legal JSON escapes are \ followed by "\/bfnrt character
        // or \u followed by 4 hexadecimal numbers (currently Kea
        // supports only \u0000 to \u00ff code points).
        // CSV processing translates '\\' into '\' and '\,' into ','
        // only so for instance '\x' is translated into '\x'. But
        // as it works on a JSON string value each of these '\'
        // characters must be doubled on JSON input.
        {
            "name": "boot-file-name",
            "data": "EST5EDT4\\,M3.2.0/02:00\\,M11.1.0/02:00"
        },

        // Options that take integer values can either be specified in
        // dec or hex format. Hex format could be either plain (e.g. abcd)
        // or prefixed with 0x (e.g. 0xabcd).
        {
            "name": "default-ip-ttl",
            "data": "0xf0"
        }

        // Note that Kea provides some of the options on its own. In particular,
        // it sends IP Address lease type (code 51, based on valid-lifetime
        // parameter, Subnet mask (code 1, based on subnet definition), Renewal
        // time (code 58, based on renew-timer parameter), Rebind time (code 59,
        // based on rebind-timer parameter).
    ],

    // Other global parameters that can be defined here are option definitions
    // (this is useful if you want to use vendor options, your own custom
    // options or perhaps handle options that Kea does not handle out of the box
    // yet).

    // You can also define classes. If classes are defined, incoming packets
    // may be assigned to specific classes. A client class can represent any
    // group of devices that share some common characteristic, e.g. Windows
    // devices, iphones, broken printers that require special options, etc.
    // Based on the class information, you can then allow or reject clients
    // to use certain subnets, add special options for them or change values
    // of some fixed fields.
    "client-classes": [
        {
            // This specifies a name of this class. It's useful if you need to
            // reference this class.
            "name": "voip",

            // This is a test. It is an expression that is being evaluated on
            // each incoming packet. It is supposed to evaluate to either
            // true or false. If it's true, the packet is added to specified
            // class. See Section 12 for a list of available expressions. There
            // are several dozens. Section 8.2.14 for more details for DHCPv4
            // classification and Section 9.2.19 for DHCPv6.
            "test": "substring(option[60].hex,0,6) == 'Aastra'",

            // If a client belongs to this class, you can define extra behavior.
            // For example, certain fields in DHCPv4 packet will be set to
            // certain values.
            "next-server": "192.0.2.254",
            "server-hostname": "hal9000",
            "boot-file-name": "/dev/null"

            // You can also define option values here if you want devices from
            // this class to receive special options.
        }
    ],

    // Another thing possible here are hooks. Kea supports a powerful mechanism
    // that allows loading external libraries that can extract information and
    // even influence how the server processes packets. Those libraries include
    // additional forensic logging capabilities, ability to reserve hosts in
    // more flexible ways, and even add extra commands. For a list of available
    // hook libraries, see https://gitlab.isc.org/isc-projects/kea/wikis/Hooks-available.
    // "hooks-libraries": [
    //   {
    //       // Forensic Logging library generates forensic type of audit trail
    //       // of all devices serviced by Kea, including their identifiers
    //       // (like MAC address), their location in the network, times
    //       // when they were active etc.
    //       "library": "/usr/lib/kea/hooks/libdhcp_legal_log.so",
    //       "parameters": {
    //           "path": "/var/lib/kea",
    //           "base-name": "kea-forensic4"
    //       }
    //   },
    //   {
    //       // Flexible identifier (flex-id). Kea software provides a way to
    //       // handle host reservations that include addresses, prefixes,
    //       // options, client classes and other features. The reservation can
    //       // be based on hardware address, DUID, circuit-id or client-id in
    //       // DHCPv4 and using hardware address or DUID in DHCPv6. However,
    //       // there are sometimes scenario where the reservation is more
    //       // complex, e.g. uses other options that mentioned above, uses part
    //       // of specific options or perhaps even a combination of several
    //       // options and fields to uniquely identify a client. Those scenarios
    //       // are addressed by the Flexible Identifiers hook application.
    //       "library": "/usr/lib/kea/hooks/libdhcp_flex_id.so",
    //       "parameters": {
    //           "identifier-expression": "relay4[2].hex"
    //       }
    //   }
    // ],

    // Below an example of a simple IPv4 subnet declaration. Uncomment to enable
    // it. This is a list, denoted with [ ], of structures, each denoted with
    // { }. Each structure describes a single subnet and may have several
    // parameters. One of those parameters is "pools" that is also a list of
    // structures.
    "subnet4": [
        {
            // This defines the whole subnet. Kea will use this information to
            // determine where the clients are connected. This is the whole
            // subnet in your network.

            // Subnet identifier should be unique for each subnet.
            "id": 1,

            // This is mandatory parameter for each subnet.
            "subnet": "192.0.2.0/24",

            // Pools define the actual part of your subnet that is governed
            // by Kea. Technically this is optional parameter, but it's
            // almost always needed for DHCP to do its job. If you omit it,
            // clients won't be able to get addresses, unless there are
            // host reservations defined for them.
            "pools": [ { "pool": "192.0.2.1 - 192.0.2.200" } ],

            // These are options that are subnet specific. In most cases,
            // you need to define at least routers option, as without this
            // option your clients will not be able to reach their default
            // gateway and will not have Internet connectivity.
            "option-data": [
                {
                    // For each IPv4 subnet you most likely need to specify at
                    // least one router.
                    "name": "routers",
                    "data": "192.0.2.1"
                }
            ],

            // Kea offers host reservations mechanism. Kea supports reservations
            // by several different types of identifiers: hw-address
            // (hardware/MAC address of the client), duid (DUID inserted by the
            // client), client-id (client identifier inserted by the client) and
            // circuit-id (circuit identifier inserted by the relay agent).
            //
            // Kea also support flexible identifier (flex-id), which lets you
            // specify an expression that is evaluated for each incoming packet.
            // Resulting value is then used for as an identifier.
            //
            // Note that reservations are subnet-specific in Kea. This is
            // different than ISC DHCP. Keep that in mind when migrating
            // your configurations.
            "reservations": [

                // This is a reservation for a specific hardware/MAC address.
                // It's a rather simple reservation: just an address and nothing
                // else.
                {
                    "hw-address": "1a:1b:1c:1d:1e:1f",
                    "ip-address": "192.0.2.201"
                },

                // This is a reservation for a specific client-id. It also shows
                // the this client will get a reserved hostname. A hostname can
                // be defined for any identifier type, not just client-id.
                {
                    "client-id": "01:11:22:33:44:55:66",
                    "ip-address": "192.0.2.202",
                    "hostname": "special-snowflake"
                },

                // The third reservation is based on DUID. This reservation defines
                // a special option values for this particular client. If the
                // domain-name-servers option would have been defined on a global,
                // subnet or class level, the host specific values take preference.
                {
                    "duid": "01:02:03:04:05",
                    "ip-address": "192.0.2.203",
                    "option-data": [ {
                        "name": "domain-name-servers",
                        "data": "10.1.1.202, 10.1.1.203"
                    } ]
                },

                // The fourth reservation is based on circuit-id. This is an option
                // inserted by the relay agent that forwards the packet from client
                // to the server.  In this example the host is also assigned vendor
                // specific options.
                //
                // When using reservations, it is useful to configure
                // reservations-global, reservations-in-subnet,
                // reservations-out-of-pool (subnet specific parameters)
                // and host-reservation-identifiers (global parameter).
                {
                    "client-id": "01:12:23:34:45:56:67",
                    "ip-address": "192.0.2.204",
                    "option-data": [
                        {
                            "name": "vivso-suboptions",
                            "data": "4491"
                        },
                        {
                            "name": "tftp-servers",
                            "space": "vendor-4491",
                            "data": "10.1.1.202, 10.1.1.203"
                        }
                    ]
                },
                // This reservation is for a client that needs specific DHCPv4
                // fields to be set. Three supported fields are next-server,
                // server-hostname and boot-file-name
                {
                    "client-id": "01:0a:0b:0c:0d:0e:0f",
                    "ip-address": "192.0.2.205",
                    "next-server": "192.0.2.1",
                    "server-hostname": "hal9000",
                    "boot-file-name": "/dev/null"
                },
                // This reservation is using flexible identifier. Instead of
                // relying on specific field, sysadmin can define an expression
                // similar to what is used for client classification,
                // e.g. substring(relay[0].option[17],0,6). Then, based on the
                // value of that expression for incoming packet, the reservation
                // is matched. Expression can be specified either as hex or
                // plain text using single quotes.
                //
                // Note: flexible identifier requires flex_id hook library to be
                // loaded to work.
                {
                    "flex-id": "'s0mEVaLue'",
                    "ip-address": "192.0.2.206"
                }
                // You can add more reservations here.
            ]
            // You can add more subnets there.
        }
    ],

    // There are many, many more parameters that DHCPv4 server is able to use.
    // They were not added here to not overwhelm people with too much
    // information at once.

    // Logging configuration starts here. Kea uses different loggers to log various
    // activities. For details (e.g. names of loggers), see Chapter 18.
    "loggers": [
    {
        // This section affects kea-dhcp4, which is the base logger for DHCPv4
        // component. It tells DHCPv4 server to write all log messages (on
        // severity INFO or more) to a file.
        "name": "kea-dhcp4",
        "output_options": [
            {
                // Specifies the output file. There are several special values
                // supported:
                // - stdout (prints on standard output)
                // - stderr (prints on standard error)
                // - syslog (logs to syslog)
                // - syslog:name (logs to syslog using specified name)
                // Any other value is considered a name of the file
                "output": "/var/log/kea-dhcp4.log"

                // Shorter log pattern suitable for use with systemd,
                // avoids redundant information
                // "pattern": "%-5p %m\n",

                // This governs whether the log output is flushed to disk after
                // every write.
                // "flush": false,

                // This specifies the maximum size of the file before it is
                // rotated.
                // "maxsize": 1048576,

                // This specifies the maximum number of rotated files to keep.
                // "maxver": 8
            }
        ],
        // This specifies the severity of log messages to keep. Supported values
        // are: FATAL, ERROR, WARN, INFO, DEBUG
        "severity": "INFO",

        // If DEBUG level is specified, this value is used. 0 is least verbose,
        // 99 is most verbose. Be cautious, Kea can generate lots and lots
        // of logs if told to do so.
        "debuglevel": 0
    }
  ]
}
}

Bevor wir nun aber unseren Kea-DHCPv4-Daemon individuell nach unseren Bedürfnissen hin anpassen, werden wir zunächst die im Paket mitgelieferte Original-Konfigurationsdatei /etc/kea/kea-dhcp4.conf für spätere Referenzen sichern.

 # cp -a /etc/kea/kea-dhcp4.conf /etc/kea/kea-dhcp4.conf.orig

So können wir später bei etwaigen Bedarf Vergleiche zur originalen Konfigurationsdatei mit unserer individuellen Konfigurationsdatei anstreben, wie in diesem Beispiel hier:

 # vimdiff /etc/kea/kea-dhcp4.conf /etc/kea/kea-dhcp4.conf.orig

¹⁾

Unreliable Datagram Protocol

²⁾

Media Access Control