[Kea-users] log the dhcp options the client requests

classic Classic list List threaded Threaded
8 messages Options
Reply | Threaded
Open this post in threaded view
|

[Kea-users] log the dhcp options the client requests

Munroe Sollog
I have this in our old dhcpd config file and I'd like to replicate something like this in kea.  Any idea how to do such a thing?

--
Munroe Sollog
Senior Network Engineer

_______________________________________________
Kea-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/kea-users
Reply | Threaded
Open this post in threaded view
|

Re: [Kea-users] log the dhcp options the client requests

Francis Dupont
Munroe Sollog writes:
> I have this in our old dhcpd config file and I'd like to replicate
> something like this in kea.  Any idea how to do such a thing?

=> not yet (cf #5271: as it is a low priority MA ticket this means
it was noted as something we can do in Kea if we need ideas).
Of course you can log the request details (but not only PRL / ORO)
or write a hook doing this (it is possible the log statement will be
implemented as a hook). Note you can post a feature request (or
wrote the hook code and make a pull request for it on github).

Regards

Francis Dupont <[hidden email]>

PS: I have in the review queue a ticket which adds (as a side effect)
a contrib directory in configure.ac so next year IMHO we'll be able
to resume the idea to provide a contrib sub module / distribution.
_______________________________________________
Kea-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/kea-users
Reply | Threaded
Open this post in threaded view
|

Re: [Kea-users] log the dhcp options the client requests

Munroe Sollog
I'm looking http://kea.isc.org/docs/kea-messages.html#DHCP4 for which log line will log the 'request details'.  I'm more than happy to see if I can acheive the same type of thing a different way.  I don't see which item actually logs the requesting information.



On Mon, Dec 18, 2017 at 8:47 AM, Francis Dupont <[hidden email]> wrote:
Munroe Sollog writes:
> I have this in our old dhcpd config file and I'd like to replicate
> something like this in kea.  Any idea how to do such a thing?

=> not yet (cf #5271: as it is a low priority MA ticket this means
it was noted as something we can do in Kea if we need ideas).
Of course you can log the request details (but not only PRL / ORO)
or write a hook doing this (it is possible the log statement will be
implemented as a hook). Note you can post a feature request (or
wrote the hook code and make a pull request for it on github).

Regards

Francis Dupont <[hidden email]>

PS: I have in the review queue a ticket which adds (as a side effect)
a contrib directory in configure.ac so next year IMHO we'll be able
to resume the idea to provide a contrib sub module / distribution.



--
Munroe Sollog
Senior Network Engineer

_______________________________________________
Kea-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/kea-users
Reply | Threaded
Open this post in threaded view
|

Re: [Kea-users] log the dhcp options the client requests

Munroe Sollog
Just a bump to see if any progress has been made in allowing servers to log the options a client requests. 

On Mon, Dec 18, 2017 at 2:19 PM Munroe Sollog <[hidden email]> wrote:
I'm looking http://kea.isc.org/docs/kea-messages.html#DHCP4 for which log line will log the 'request details'.  I'm more than happy to see if I can acheive the same type of thing a different way.  I don't see which item actually logs the requesting information.



On Mon, Dec 18, 2017 at 8:47 AM, Francis Dupont <[hidden email]> wrote:
Munroe Sollog writes:
> I have this in our old dhcpd config file and I'd like to replicate
> something like this in kea.  Any idea how to do such a thing?

=> not yet (cf #5271: as it is a low priority MA ticket this means
it was noted as something we can do in Kea if we need ideas).
Of course you can log the request details (but not only PRL / ORO)
or write a hook doing this (it is possible the log statement will be
implemented as a hook). Note you can post a feature request (or
wrote the hook code and make a pull request for it on github).

Regards

Francis Dupont <[hidden email]>

PS: I have in the review queue a ticket which adds (as a side effect)
a contrib directory in configure.ac so next year IMHO we'll be able
to resume the idea to provide a contrib sub module / distribution.



--
Munroe Sollog
Senior Network Engineer
--
Munroe Sollog
Senior Network Engineer

_______________________________________________
Kea-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/kea-users
Reply | Threaded
Open this post in threaded view
|

Re: [Kea-users] log the dhcp options the client requests

Tomek Mrugalski
On 22.08.2019 13:16, Munroe Sollog wrote:
> Just a bump to see if any progress has been made in allowing servers
> to log the options a client requests.
Thanks for bringing this up. That's interesting and a bit dangerous
request, especially if misconfigured.

What exactly would you like to see in the log? Content of PRL or ORO
options, i.e. a list of options being requested or the actual content of
all options the client sent in its messages?

Take a look at the loggers we currently have:
https://kea.readthedocs.io/en/latest/arm/logging.html#the-name-string-logger

In particular, you may look at kea-dhcp{4,6}.packets. If you're trying
to debug a client that his packets are rejects,
kea-dhcp{4,6}.bad-packets is something to look at. Also, there's
kea-dhcp4.options logger.

If none of those work for you, can you open an issue in gitlab?
https://gitlab.isc.org/isc-projects/kea/issues

Thanks,

Tomek
_______________________________________________
Kea-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/kea-users
Reply | Threaded
Open this post in threaded view
|

Re: [Kea-users] log the dhcp options the client requests

Munroe Sollog
We currently use the dhcp options a client requests to fingerprint the device. 

On Thu, Aug 22, 2019 at 7:54 AM Tomek Mrugalski <[hidden email]> wrote:
On 22.08.2019 13:16, Munroe Sollog wrote:
> Just a bump to see if any progress has been made in allowing servers
> to log the options a client requests.
Thanks for bringing this up. That's interesting and a bit dangerous
request, especially if misconfigured.

What exactly would you like to see in the log? Content of PRL or ORO
options, i.e. a list of options being requested or the actual content of
all options the client sent in its messages?

Take a look at the loggers we currently have:
https://kea.readthedocs.io/en/latest/arm/logging.html#the-name-string-logger

In particular, you may look at kea-dhcp{4,6}.packets. If you're trying
to debug a client that his packets are rejects,
kea-dhcp{4,6}.bad-packets is something to look at. Also, there's
kea-dhcp4.options logger.

If none of those work for you, can you open an issue in gitlab?
https://gitlab.isc.org/isc-projects/kea/issues

Thanks,

Tomek
_______________________________________________
Kea-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/kea-users
--
Munroe Sollog
Senior Network Engineer

_______________________________________________
Kea-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/kea-users
Reply | Threaded
Open this post in threaded view
|

Re: [Kea-users] log the dhcp options the client requests

vicky risk
Administrator
For fingerprinting, don’t you also need to know the order in which the options are requested?

On Aug 22, 2019, at 5:10 AM, Munroe Sollog <[hidden email]> wrote:

We currently use the dhcp options a client requests to fingerprint the device. 

On Thu, Aug 22, 2019 at 7:54 AM Tomek Mrugalski <[hidden email]> wrote:
On 22.08.2019 13:16, Munroe Sollog wrote:
> Just a bump to see if any progress has been made in allowing servers
> to log the options a client requests.
Thanks for bringing this up. That's interesting and a bit dangerous
request, especially if misconfigured.

What exactly would you like to see in the log? Content of PRL or ORO
options, i.e. a list of options being requested or the actual content of
all options the client sent in its messages?

Take a look at the loggers we currently have:
https://kea.readthedocs.io/en/latest/arm/logging.html#the-name-string-logger

In particular, you may look at kea-dhcp{4,6}.packets. If you're trying
to debug a client that his packets are rejects,
kea-dhcp{4,6}.bad-packets is something to look at. Also, there's
kea-dhcp4.options logger.

If none of those work for you, can you open an issue in gitlab?
https://gitlab.isc.org/isc-projects/kea/issues

Thanks,

Tomek
_______________________________________________
Kea-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/kea-users
--
Munroe Sollog
Senior Network Engineer
_______________________________________________
Kea-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/kea-users

Victoria Risk
Product Manager
Internet Systems Consortium






_______________________________________________
Kea-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/kea-users
Reply | Threaded
Open this post in threaded view
|

Re: [Kea-users] log the dhcp options the client requests

Munroe Sollog
Yes, that is correct.

On Thu, Aug 22, 2019 at 11:54 AM Victoria Risk <[hidden email]> wrote:
For fingerprinting, don’t you also need to know the order in which the options are requested?

On Aug 22, 2019, at 5:10 AM, Munroe Sollog <[hidden email]> wrote:

We currently use the dhcp options a client requests to fingerprint the device. 

On Thu, Aug 22, 2019 at 7:54 AM Tomek Mrugalski <[hidden email]> wrote:
On 22.08.2019 13:16, Munroe Sollog wrote:
> Just a bump to see if any progress has been made in allowing servers
> to log the options a client requests.
Thanks for bringing this up. That's interesting and a bit dangerous
request, especially if misconfigured.

What exactly would you like to see in the log? Content of PRL or ORO
options, i.e. a list of options being requested or the actual content of
all options the client sent in its messages?

Take a look at the loggers we currently have:
https://kea.readthedocs.io/en/latest/arm/logging.html#the-name-string-logger

In particular, you may look at kea-dhcp{4,6}.packets. If you're trying
to debug a client that his packets are rejects,
kea-dhcp{4,6}.bad-packets is something to look at. Also, there's
kea-dhcp4.options logger.

If none of those work for you, can you open an issue in gitlab?
https://gitlab.isc.org/isc-projects/kea/issues

Thanks,

Tomek
_______________________________________________
Kea-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/kea-users
--
Munroe Sollog
Senior Network Engineer
_______________________________________________
Kea-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/kea-users

Victoria Risk
Product Manager
Internet Systems Consortium







--
Munroe Sollog
Senior Network Engineer

_______________________________________________
Kea-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/kea-users