host printer_student {
hardware ethernet 00:01:e6:84:e9:79;
fixed-address 172.16.1.21;
}
[[MORE]]
但如果管理上我只是想分類,某些電腦分配某區,某些電腦分配另一區,而依此將某區域加以做流量管制或是防火牆規則,那可以用 subclass 的作法,像這樣:
class "pcrooma" {
match pick-first-value (option dhcp-client-identifier, hardware);
}
subclass "pcrooma" 1:0:c0:ca:11:b8:9c;
subclass "pcrooma" 1:0:c0:ca:11:af:e ;
subclass "pcrooma" 1:0:c0:ca:11:b8:a7;
subclass "pcrooma" 1:0:c0:ca:11:b2:84;
然後在 pool 裡面指定 range:
pool {
allow members of "pcrooma";
allow members of "pcroomb";
range 172.16.2.0 172.16.2.255;
}
這裡有個最重要的注意事項,我翻了很多資料之後才找到的:
就是每張網卡號碼前面還要加上 1: 才能被正常識別。
沒有留言:
張貼留言