cancel
Showing results for 
Search instead for 
Did you mean: 

DHCP reservation without MAC address?

SOLVED
Highlighted
New Contributor

DHCP reservation without MAC address?

Hello,

I'm throwing this out there while I continue testing to see if anyone has experience with this type of setup.

 

Pulse Connect Secure version 9.1R5 (build 5459).

The requirement is to assign VPN clients the same IP address each time they connect.

As far as I know I cannot achieve this on the device without using a DHCP server.

 

I have an ISC DHCP server set up on the network which successfully assigns IPs to VPN clients so I know DHCP works.

 

Now I want to reserve IPs for particulart clients.

 

The PCS connection profile is configured to use the DHCP server and is set according to the admin guide.

option number=12, option value=<username><authMethod>, option type=String

This works fine.

subnet 192.168.0.0 netmask 255.255.0.0 {
  range 192.168.0.1 192.168.0.10;
  option routers 192.168.0.1;
}

host test {
  hardware ethernet 0:0:c0:5d:bd:95; 
  fixed-address 192.168.1.1;
}

This does not.

subnet 192.168.0.0 netmask 255.255.0.0 {
  range 192.168.0.1 192.168.0.10;
  option routers 192.168.0.1;
}

host test {
  fixed-address 192.168.1.1;
}

 

Is there a way to assign IPs solely using the username passed in the DHCP packet?  The PCS generates a new MAC for each connection so that would not be a reliable way to reserve an IP.

 

Any recommendations?

1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted
New Contributor

Re: DHCP reservation without MAC address?

I put together an ISC DHCP configuration that is working.

 

# dhcpd.conf
#
# Sample configuration file for ISC dhcpd
#
# Attention: If /etc/ltsp/dhcpd.conf exists, that will be used as
# configuration file instead of this file.
#

# option definitions common to all supported networks...
option domain-name "test.local";
option domain-name-servers 8.8.8.8;

default-lease-time 86400;
max-lease-time 86400;
ddns-update-style none;
authoritative;

class "test1" {
  match if ( option host-name = "test1");
}
class "test2" {
  match if ( option host-name = "test2");
}
class "test3" {
  match if ( option host-name = "test3");
}

subnet 192.168.0.0 netmask 255.255.0.0 {
  option routers 192.168.0.1;

  pool {
    allow members of "test1";
    range 192.168.1.1 192.168.1.1;
    }
  pool {
    allow members of "test2";
    range 192.168.1.2 192.168.1.2;
    }
  pool {
    allow members of "test3";
    range 192.168.1.3 192.168.1.3;
    }
}

Now each client will recieve the same IP every time they connect without having to worry about knowing their MAC address.

View solution in original post

2 REPLIES 2
Highlighted
New Contributor

Re: DHCP reservation without MAC address?

I put together an ISC DHCP configuration that is working.

 

# dhcpd.conf
#
# Sample configuration file for ISC dhcpd
#
# Attention: If /etc/ltsp/dhcpd.conf exists, that will be used as
# configuration file instead of this file.
#

# option definitions common to all supported networks...
option domain-name "test.local";
option domain-name-servers 8.8.8.8;

default-lease-time 86400;
max-lease-time 86400;
ddns-update-style none;
authoritative;

class "test1" {
  match if ( option host-name = "test1");
}
class "test2" {
  match if ( option host-name = "test2");
}
class "test3" {
  match if ( option host-name = "test3");
}

subnet 192.168.0.0 netmask 255.255.0.0 {
  option routers 192.168.0.1;

  pool {
    allow members of "test1";
    range 192.168.1.1 192.168.1.1;
    }
  pool {
    allow members of "test2";
    range 192.168.1.2 192.168.1.2;
    }
  pool {
    allow members of "test3";
    range 192.168.1.3 192.168.1.3;
    }
}

Now each client will recieve the same IP every time they connect without having to worry about knowing their MAC address.

View solution in original post

Highlighted
Moderator

Re: DHCP reservation without MAC address?

Thank you for sharing this info. Much Appreciated!

PCS Expert
Pulse Connect Secure Certified Expert