As I’m about to finally implement IPv6 of my network, I noticed that ISC DHCP has already reached EOL. Has a decision been made about switching from that to their newer Kea servers? If so, when will it happen. I would rather migrate now if it is schedulel.
I’d like to get my 3 LANs each with their own delegated prefix allocated. I have a vague idea of the requirements for dhcpd already but if a switch to Kea is already planned, I will migrate now.
I’ve just found that I can use systemd-networkd to handle this. I’ve been turning it off for years because of dns clobbering on my LAN that prevented my FreeIPA config from working.
Does anyone have a link that shows an example of a firewalld router config through systemd?
I run systemd-networkd for my router with firewalld.
But my config is not public.
Simplified.
Uninstall network manager.
Add ’man systemd.network` files for each interface.
Add firewalld zone for each interface.
Add policy to allow internal to external ingress and egress.
Supporting wireguard vm as well is a little more tricky, but can be made to work.
But I am still using isc dhcpd and named on the router so that local hosts are automatically added to my home domain.
That all makes sense. I’m interested in documentation for the DHCP server and also the DHCP client options within the systemd networkd configuration.
Do you recommend putting the firewall routing filtering into the INPUT or OUTPUT chains? How I did it 20+ years ago doesn’t seem likely to still be the best choices for the newer software.