Auto-update blog content from Obsidian: 2025-10-20 06:21:54
All checks were successful
Blog Deployment / Deploy-Production (push) Successful in 9s
Blog Deployment / Test-Production (push) Successful in 2s
Blog Deployment / Clean (push) Has been skipped
Blog Deployment / Notify (push) Successful in 3s
Blog Deployment / Check-Rebuild (push) Successful in 7s
Blog Deployment / Build (push) Has been skipped
Blog Deployment / Deploy-Staging (push) Successful in 10s
Blog Deployment / Test-Staging (push) Successful in 2s
Blog Deployment / Merge (push) Successful in 7s
All checks were successful
Blog Deployment / Deploy-Production (push) Successful in 9s
Blog Deployment / Test-Production (push) Successful in 2s
Blog Deployment / Clean (push) Has been skipped
Blog Deployment / Notify (push) Successful in 3s
Blog Deployment / Check-Rebuild (push) Successful in 7s
Blog Deployment / Build (push) Has been skipped
Blog Deployment / Deploy-Staging (push) Successful in 10s
Blog Deployment / Test-Staging (push) Successful in 2s
Blog Deployment / Merge (push) Successful in 7s
This commit is contained in:
Gitea Actions
@@ -241,11 +241,9 @@ Great, with these 3 rules, I cover the basics. The remaining rules would be to a
|
|||||||
|
|
||||||
### DHCP
|
### DHCP
|
||||||
|
|
||||||
For the DHCP, I choose Dnsmasq. In my current installation I use ISC DHCPv4, but as it is now deprecated, I prefer to replace it.
|
For the DHCP, I choose Dnsmasq. In my current installation I use ISC DHCPv4, but as it is now deprecated, I prefer to replace it. Dnsmasq will also act as DNS, but only for my local zones.
|
||||||
|
|
||||||
Beware because it is not synchronize leases in HA. To workaround this, both firewalls will serve DHCP at the same time, with slight different configuration to not overlap.
|
Beware because it is not synchronizing leases in HA. To workaround this, both firewalls will serve DHCP at the same time, with slight different configuration to not overlap.
|
||||||
|
|
||||||
Dnsmasq will also act as DNS, but only for my local zones.
|
|
||||||
|
|
||||||
In `Services` > `Dnsmasq DNS & DHCP` > `General`, I configure the master firewall as follow:
|
In `Services` > `Dnsmasq DNS & DHCP` > `General`, I configure the master firewall as follow:
|
||||||
- **Default**
|
- **Default**
|
||||||
@@ -263,7 +261,7 @@ In `Services` > `Dnsmasq DNS & DHCP` > `General`, I configure the master firewal
|
|||||||
- **DHCP register firewall rules**: Enabled
|
- **DHCP register firewall rules**: Enabled
|
||||||
- **Disable HA sync**: Enabled
|
- **Disable HA sync**: Enabled
|
||||||
|
|
||||||
On the backup node, I configure it the same way, the only difference will be the **DHCP reply delay** which I set to **10**. This will let the time to my master node to fulfill requests if it is alive.
|
On the backup node, I configure it the same, the only difference will be the **DHCP reply delay** which I set to **10**. This will let the time to my master node to fulfill requests if it is alive.
|
||||||
|
|
||||||
Next I configure the DHCP ranges. Both firewalls will have different ranges, the backup node will have smaller ones. On the master, they are configured as follow:
|
Next I configure the DHCP ranges. Both firewalls will have different ranges, the backup node will have smaller ones. On the master, they are configured as follow:
|
||||||
|
|
||||||
@@ -271,6 +269,7 @@ Next I configure the DHCP ranges. Both firewalls will have different ranges, the
|
|||||||
Then I set some DHCP options for each domain: the `router`, the `dns-server` and the `domain-name`:
|
Then I set some DHCP options for each domain: the `router`, the `dns-server` and the `domain-name`:
|
||||||
|
|
||||||
|
|
||||||
|
Finally in in the `Hosts` tab,
|
||||||
|
|
||||||
### DNS
|
### DNS
|
||||||
|
|
||||||
@@ -306,6 +305,8 @@ Finally I configure query forwarding for my local domains. In `Services` > `Unbo
|
|||||||
## Switch
|
## Switch
|
||||||
|
|
||||||
Enable DHCP
|
Enable DHCP
|
||||||
|
Change VIP
|
||||||
|
Replicate configuration
|
||||||
## Verify
|
## Verify
|
||||||
|
|
||||||
|
|
||||||
|
|||||||
Binary file not shown.
|
Before Width: | Height: | Size: 169 KiB After Width: | Height: | Size: 111 KiB |
Reference in New Issue
Block a user