Hi guys,
I'm a new to foreman. I used to use spacewalk for a long time, trying to
find a better solution for our company.
I was trying to set up a demo box with foreman & isc dhcpd on centos 7.3.
I followed the docs ( ISC DHCP - Smart Proxy - Foreman)
I added proxy feature, keys, dhcp network in foreman etc.
Foreman says that dhcp feature is up and running.
Docs say I need to start up dhcpd, which doesn't make any sense for me
since I didn't configure any nets directly in /etc/dhcpd/dhcpd.conf, I
assume foreman has to do that?
Here's is config files:
dhcpd.conf:
···
#
# DHCP Server Configuration file.
# see /usr/share/doc/dhcp*/dhcpd.conf.example
# see dhcpd.conf(5) man page
#
omapi-port 7911;
key omapi_key {
algorithm HMAC-MD5;
secret
"mmaA9cCfrl+KjQVQwbSQfN/LAyok58Kbb9Y4XrOs9UoK7j8ePYIGyDcNAWnDYFmdRgaEahs94rdAo4B9IyV6pA==";
#<-The output from the generated key above.
};
omapi-key omapi_key;
[root@foreman settings.d]# cat dhcp.yml
Enable DHCP management
Can be true, false, or http/https to enable just one of the protocols
this page is pretty out of date (2013), you are not supposed to be
installing these services manually, we have a puppet-based installer
that does all the magic. If you do not want to use it, I recommend you
to install foreman on a test server and then investigate the
configuration files contents because your approach will be painful I
think.
Anyway, Foreman does manage DHCP records using OMAPI (adding/removing
records, tracking leases) but it does NOT create subnets. You need to
do this manually, our installer can create one subnet for you (it
requires it actually) and more subnets using Hiera configuration. A
typical configuration is:
···
On Sun, Sep 24, 2017 at 12:10 AM, Konstantin Raskoshnyi wrote:
> Hi guys,
> I'm a new to foreman. I used to use spacewalk for a long time, trying to
> find a better solution for our company.
>
> I was trying to set up a demo box with foreman & isc dhcpd on centos 7.3.
> I followed the docs
> (http://projects.theforeman.org/projects/smart-proxy/wiki/ISC_DHCP)
> I added proxy feature, keys, dhcp network in foreman etc.
> Foreman says that dhcp feature is up and running.
> Docs say I need to start up dhcpd, which doesn't make any sense for me since
> I didn't configure any nets directly in /etc/dhcpd/dhcpd.conf, I assume
> foreman has to do that?
> Here's is config files:
>
> dhcpd.conf:
> #
> # DHCP Server Configuration file.
> # see /usr/share/doc/dhcp*/dhcpd.conf.example
> # see dhcpd.conf(5) man page
> #
> omapi-port 7911;
> key omapi_key {
> algorithm HMAC-MD5;
> secret
> "mmaA9cCfrl+KjQVQwbSQfN/LAyok58Kbb9Y4XrOs9UoK7j8ePYIGyDcNAWnDYFmdRgaEahs94rdAo4B9IyV6pA==";
> #<-The output from the generated key above.
> };
> omapi-key omapi_key;
>
>
> [root@foreman settings.d]# cat dhcp.yml
> ---
> # Enable DHCP management
> # Can be true, false, or http/https to enable just one of the protocols
> :enabled: true
>
> # valid providers:
> # - dhcp_isc (ISC dhcp server)
> # - dhcp_native_ms (Microsoft native implementation)
> # - dhcp_libvirt (dnsmasq via libvirt)
> :use_provider: dhcp_isc
> :server: 127.0.0.1
> # subnets restricts the subnets queried to a subset, to reduce the query
> time.
> :subnets:
> - 192.168.56.0/255.255.255.0
> # - 192.168.205.128/255.255.255.128
>
> [root@foreman settings.d]# cat dhcp_isc.yml
> ---
> #
> # Configuration file for ISC dhcp provider
> #
>
> :config: /etc/dhcp/dhcpd.conf
> :leases: /var/lib/dhcpd/dhcpd.leases
>
> :key_name: omapi_key
> :key_secret:
> mmaA9cCfrl+KjQVQwbSQfN/LAyok58Kbb9Y4XrOs9UoK7j8ePYIGyDcNAWnDYFmdRgaEahs94rdAo4B9IyV6pA==
>
>
> :omapi_port: 7911
>
> # use :server setting in dhcp.yml if you are managing a dhcp server which is
> not localhost
>
>
> Will be happy to hear any suggestions.
> Happy weekend!
>
> --
> You received this message because you are subscribed to the Google Groups
> "Foreman users" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to foreman-users+unsubscribe@googlegroups.com.
> To post to this group, send email to foreman-users@googlegroups.com.
> Visit this group at https://groups.google.com/group/foreman-users.
> For more options, visit https://groups.google.com/d/optout.
···
> On Sep 24, 2017, at 11:35 PM, Lukas Zapletal wrote:
>
> Hello,
>
> this page is pretty out of date (2013), you are not supposed to be
> installing these services manually, we have a puppet-based installer
> that does all the magic. If you do not want to use it, I recommend you
> to install foreman on a test server and then investigate the
> configuration files contents because your approach will be painful I
> think.
>
> Anyway, Foreman does manage DHCP records using OMAPI (adding/removing
> records, tracking leases) but it does NOT create subnets. You need to
> do this manually, our installer can create one subnet for you (it
> requires it actually) and more subnets using Hiera configuration. A
> typical configuration is:
>
> --foreman-proxy-dhcp=true \ --foreman-proxy-dhcp-interface=eth0 \
> --foreman-proxy-dhcp-gateway=10.0.0.1 \
> --foreman-proxy-dhcp-range="10.0.0.100 10.0.0.200" \
> --foreman-proxy-dhcp-nameservers="10.0.1.2,10.0.1.3"
>
> https://theforeman.org/manuals/1.15/index.html#3.2ForemanInstaller
>
> On Sun, Sep 24, 2017 at 12:10 AM, Konstantin Raskoshnyi > wrote:
>> Hi guys,
>> I'm a new to foreman. I used to use spacewalk for a long time, trying to
>> find a better solution for our company.
>>
>> I was trying to set up a demo box with foreman & isc dhcpd on centos 7.3.
>> I followed the docs
>> (http://projects.theforeman.org/projects/smart-proxy/wiki/ISC_DHCP)
>> I added proxy feature, keys, dhcp network in foreman etc.
>> Foreman says that dhcp feature is up and running.
>> Docs say I need to start up dhcpd, which doesn't make any sense for me since
>> I didn't configure any nets directly in /etc/dhcpd/dhcpd.conf, I assume
>> foreman has to do that?
>> Here's is config files:
>>
>> dhcpd.conf:
>> #
>> # DHCP Server Configuration file.
>> # see /usr/share/doc/dhcp*/dhcpd.conf.example
>> # see dhcpd.conf(5) man page
>> #
>> omapi-port 7911;
>> key omapi_key {
>> algorithm HMAC-MD5;
>> secret
>> "mmaA9cCfrl+KjQVQwbSQfN/LAyok58Kbb9Y4XrOs9UoK7j8ePYIGyDcNAWnDYFmdRgaEahs94rdAo4B9IyV6pA==";
>> #<-The output from the generated key above.
>> };
>> omapi-key omapi_key;
>>
>>
>> [root@foreman settings.d]# cat dhcp.yml
>> ---
>> # Enable DHCP management
>> # Can be true, false, or http/https to enable just one of the protocols
>> :enabled: true
>>
>> # valid providers:
>> # - dhcp_isc (ISC dhcp server)
>> # - dhcp_native_ms (Microsoft native implementation)
>> # - dhcp_libvirt (dnsmasq via libvirt)
>> :use_provider: dhcp_isc
>> :server: 127.0.0.1
>> # subnets restricts the subnets queried to a subset, to reduce the query
>> time.
>> :subnets:
>> - 192.168.56.0/255.255.255.0
>> # - 192.168.205.128/255.255.255.128
>>
>> [root@foreman settings.d]# cat dhcp_isc.yml
>> ---
>> #
>> # Configuration file for ISC dhcp provider
>> #
>>
>> :config: /etc/dhcp/dhcpd.conf
>> :leases: /var/lib/dhcpd/dhcpd.leases
>>
>> :key_name: omapi_key
>> :key_secret:
>> mmaA9cCfrl+KjQVQwbSQfN/LAyok58Kbb9Y4XrOs9UoK7j8ePYIGyDcNAWnDYFmdRgaEahs94rdAo4B9IyV6pA==
>>
>>
>> :omapi_port: 7911
>>
>> # use :server setting in dhcp.yml if you are managing a dhcp server which is
>> not localhost
>>
>>
>> Will be happy to hear any suggestions.
>> Happy weekend!
>>
>> --
>> You received this message because you are subscribed to the Google Groups
>> "Foreman users" group.
>> To unsubscribe from this group and stop receiving emails from it, send an
>> email to foreman-users+unsubscribe@googlegroups.com.
>> To post to this group, send email to foreman-users@googlegroups.com.
>> Visit this group at https://groups.google.com/group/foreman-users.
>> For more options, visit https://groups.google.com/d/optout.
>
>
>
> --
> Later,
> Lukas @lzap Zapletal
>
> --
> You received this message because you are subscribed to the Google Groups "Foreman users" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to foreman-users+unsubscribe@googlegroups.com.
> To post to this group, send email to foreman-users@googlegroups.com.
> Visit this group at https://groups.google.com/group/foreman-users.
> For more options, visit https://groups.google.com/d/optout.
We do support one subnet per installation via installer/puppet and
multiple subnets via hiera.yaml.
LZ
···
On Fri, Oct 6, 2017 at 5:42 AM, Grace Thompson wrote:
> Any plans on enabling Subnet creations?
>
> - gracie mobile
>
>> On Sep 24, 2017, at 11:35 PM, Lukas Zapletal wrote:
>>
>> Hello,
>>
>> this page is pretty out of date (2013), you are not supposed to be
>> installing these services manually, we have a puppet-based installer
>> that does all the magic. If you do not want to use it, I recommend you
>> to install foreman on a test server and then investigate the
>> configuration files contents because your approach will be painful I
>> think.
>>
>> Anyway, Foreman does manage DHCP records using OMAPI (adding/removing
>> records, tracking leases) but it does NOT create subnets. You need to
>> do this manually, our installer can create one subnet for you (it
>> requires it actually) and more subnets using Hiera configuration. A
>> typical configuration is:
>>
>> --foreman-proxy-dhcp=true \ --foreman-proxy-dhcp-interface=eth0 \
>> --foreman-proxy-dhcp-gateway=10.0.0.1 \
>> --foreman-proxy-dhcp-range="10.0.0.100 10.0.0.200" \
>> --foreman-proxy-dhcp-nameservers="10.0.1.2,10.0.1.3"
>>
>> https://theforeman.org/manuals/1.15/index.html#3.2ForemanInstaller
>>
>> On Sun, Sep 24, 2017 at 12:10 AM, Konstantin Raskoshnyi >> wrote:
>>> Hi guys,
>>> I'm a new to foreman. I used to use spacewalk for a long time, trying to
>>> find a better solution for our company.
>>>
>>> I was trying to set up a demo box with foreman & isc dhcpd on centos 7.3.
>>> I followed the docs
>>> (http://projects.theforeman.org/projects/smart-proxy/wiki/ISC_DHCP)
>>> I added proxy feature, keys, dhcp network in foreman etc.
>>> Foreman says that dhcp feature is up and running.
>>> Docs say I need to start up dhcpd, which doesn't make any sense for me since
>>> I didn't configure any nets directly in /etc/dhcpd/dhcpd.conf, I assume
>>> foreman has to do that?
>>> Here's is config files:
>>>
>>> dhcpd.conf:
>>> #
>>> # DHCP Server Configuration file.
>>> # see /usr/share/doc/dhcp*/dhcpd.conf.example
>>> # see dhcpd.conf(5) man page
>>> #
>>> omapi-port 7911;
>>> key omapi_key {
>>> algorithm HMAC-MD5;
>>> secret
>>> "mmaA9cCfrl+KjQVQwbSQfN/LAyok58Kbb9Y4XrOs9UoK7j8ePYIGyDcNAWnDYFmdRgaEahs94rdAo4B9IyV6pA==";
>>> #<-The output from the generated key above.
>>> };
>>> omapi-key omapi_key;
>>>
>>>
>>> [root@foreman settings.d]# cat dhcp.yml
>>> ---
>>> # Enable DHCP management
>>> # Can be true, false, or http/https to enable just one of the protocols
>>> :enabled: true
>>>
>>> # valid providers:
>>> # - dhcp_isc (ISC dhcp server)
>>> # - dhcp_native_ms (Microsoft native implementation)
>>> # - dhcp_libvirt (dnsmasq via libvirt)
>>> :use_provider: dhcp_isc
>>> :server: 127.0.0.1
>>> # subnets restricts the subnets queried to a subset, to reduce the query
>>> time.
>>> :subnets:
>>> - 192.168.56.0/255.255.255.0
>>> # - 192.168.205.128/255.255.255.128
>>>
>>> [root@foreman settings.d]# cat dhcp_isc.yml
>>> ---
>>> #
>>> # Configuration file for ISC dhcp provider
>>> #
>>>
>>> :config: /etc/dhcp/dhcpd.conf
>>> :leases: /var/lib/dhcpd/dhcpd.leases
>>>
>>> :key_name: omapi_key
>>> :key_secret:
>>> mmaA9cCfrl+KjQVQwbSQfN/LAyok58Kbb9Y4XrOs9UoK7j8ePYIGyDcNAWnDYFmdRgaEahs94rdAo4B9IyV6pA==
>>>
>>>
>>> :omapi_port: 7911
>>>
>>> # use :server setting in dhcp.yml if you are managing a dhcp server which is
>>> not localhost
>>>
>>>
>>> Will be happy to hear any suggestions.
>>> Happy weekend!
>>>
>>> --
>>> You received this message because you are subscribed to the Google Groups
>>> "Foreman users" group.
>>> To unsubscribe from this group and stop receiving emails from it, send an
>>> email to foreman-users+unsubscribe@googlegroups.com.
>>> To post to this group, send email to foreman-users@googlegroups.com.
>>> Visit this group at https://groups.google.com/group/foreman-users.
>>> For more options, visit https://groups.google.com/d/optout.
>>
>>
>>
>> --
>> Later,
>> Lukas @lzap Zapletal
>>
>> --
>> You received this message because you are subscribed to the Google Groups "Foreman users" group.
>> To unsubscribe from this group and stop receiving emails from it, send an email to foreman-users+unsubscribe@googlegroups.com.
>> To post to this group, send email to foreman-users@googlegroups.com.
>> Visit this group at https://groups.google.com/group/foreman-users.
>> For more options, visit https://groups.google.com/d/optout.
>
> --
> You received this message because you are subscribed to the Google Groups "Foreman users" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to foreman-users+unsubscribe@googlegroups.com.
> To post to this group, send email to foreman-users@googlegroups.com.
> Visit this group at https://groups.google.com/group/foreman-users.
> For more options, visit https://groups.google.com/d/optout.
