Receive Interface
A "simulated" virtual DHCP server receiving interface. This setting is
used to simulate a receiving interface when an IP pool is obtaining IP
addresses from internal DHCP servers. This is needed since the filtering
criteria of a DHCP server includes a Receive Interface.
An internal DHCP server cannot receive requests from the IP pool
subsystem on an interface since both the server and the pool are internal
to NetDefendOS. This setting allows such requests from a pool to
appear as though they come from a particular interface so that the
relevant DHCP server will respond.
MAC Range
A range of MAC addresses that will be use to create "fake" DHCP
clients. Used when the DHCP server(s) map clients by the MAC
address. An indication of the need for MAC ranges is when the DHCP
server keeps giving out the same IP for each client.
Prefetch leases
Specifies the number of leases to keep prefetched. Prefetching will
improve performance since there will not be any wait time when a
system requests an IP (while there exists prefetched IPs).
Maximum free
The maximum number of "free" IPs to be kept. Must be equal to or
greater than the prefetch parameter. The pool will start releasing (giving
back IPs to the DHCP server) when the number of free clients exceeds
this value.
Maximum clients
Optional setting used to specify the maximum number of clients (IPs)
allowed in the pool.
Sender IP
This is the source IP to use when communicating with the DHCP server.
Memory Allocation for Prefetched Leases
As mentioned in the previous section, the Prefetched Leases option specifies the size of the cache of
leases which is maintained by NetDefendOS. This cache provides fast lease allocation and can
improve overall system performance. It should be noted however that the entire prefetched number
of leases is requested at system startup and if this number is too large then this can degrade initial
performance.
As leases in the prefetch cache are allocated, requests are made to DHCP servers so that the cache is
always full. The administrator therefore has to make a judgement as to the optimal initial size of the
prefetch cache.
Listing IP Pool Status
The CLI command ippools can be used to look at the current status of an IP pool. The simplest form
of the command is:
gw-world:/> ippool -show
This displays all the configured IP pools along with their status. The status information is divided
into four parts:
•
Zombies - The number of allocated but inactive addresses.
•
In progress - The number of addresses that in the process of being allocated.
•
Free maintained in pool - The number of addresses that are available for allocation.
•
Used by subsystems - The number of addresses that are allocated and active.
5.4. IP Pools
Chapter 5. DHCP Services
239
Summary of Contents for NetDefend DFL-260E
Page 27: ...1 3 NetDefendOS State Engine Packet Flow Chapter 1 NetDefendOS Overview 27...
Page 79: ...2 7 3 Restore to Factory Defaults Chapter 2 Management and Maintenance 79...
Page 146: ...3 9 DNS Chapter 3 Fundamentals 146...
Page 227: ...4 7 5 Advanced Settings for Transparent Mode Chapter 4 Routing 227...
Page 241: ...5 4 IP Pools Chapter 5 DHCP Services 241...
Page 339: ...6 7 Blacklisting Hosts and Networks Chapter 6 Security Mechanisms 339...
Page 360: ...7 4 7 SAT and FwdFast Rules Chapter 7 Address Translation 360...
Page 382: ...8 3 Customizing HTML Pages Chapter 8 User Authentication 382...
Page 386: ...The TLS ALG 9 1 5 The TLS Alternative for VPN Chapter 9 VPN 386...
Page 439: ...Figure 9 3 PPTP Client Usage 9 5 4 PPTP L2TP Clients Chapter 9 VPN 439...
Page 450: ...9 7 6 Specific Symptoms Chapter 9 VPN 450...
Page 488: ...10 4 6 Setting Up SLB_SAT Rules Chapter 10 Traffic Management 488...
Page 503: ...11 6 HA Advanced Settings Chapter 11 High Availability 503...
Page 510: ...12 3 5 Limitations Chapter 12 ZoneDefense 510...
Page 533: ...13 9 Miscellaneous Settings Chapter 13 Advanced Settings 533...