Ip Pools - D-Link NetDefend DFL-210 User Manual

5.5. IP Pools

5.5. IP Pools
Overview
IP pools are used to offer other subsystems access to a cache of DHCP IP addresses. These
addresses are gathered into a pool by internally maintaining a series of DHCP clients (one per IP).
The DHCP servers used by a pool can either be external or be DHCP servers defined in
NetDefendOS itself. External DHCP servers can be specified as the server on a specific interface or
by a unique IP address. Multiple IP Pools can be set up with different identifying names.
The primary usage of IP Pools is with IKE Config Mode which is a feature used for allocating IP
addresses to remote clients connecting through IPsec tunnels. For more information on this see
Section 9.4.3.4, "Using Config Mode".
Basic IP Pool Options
The basic options available for an IP Pool are:
DHCP Server behind interface
Server filter
Specify DHCP Server Address
Client IP filter
Advanced IP Pool Options
Advanced options available for IP Pool configuration are:
Routing table
Receive interface
MAC Range
Prefetched leases
Indicates that the IP pool should use the DHCP server(s)
residing on the specified interface.
Optional setting used to specify which servers to use. If
unspecified any DHCP server on the interface will be used.
The order of the provided address or ranges (if multiple) will
be used to indicate the preferred servers.
Specify DHCP server IP(s) in preferred ascending order to be
used. Using the IP loopback address 127.0.0.1 indicates that
the DHCP server is NetDefendOS itself.
Optional setting used to specify which offered IPs are valid to
use. In most cases this will be set to the default of all-nets.
Alternatively a set of IP ranges might be specified. The filter
ensures that only certain IP addresses from DHCP servers are
acceptable and is used in the situation where there might be a
DHCP server response with an unacceptable IP address.
Policy routing table to be used for lookups when resolving the
destination interfaces for the configured DHCP servers.
"Simulated" receive interface. This can be used in policy based routing
rules and/or used to trigger a specific DHCP server rule if the pool is
using a DHCP server in NetDefendOS and the IP address of that server
has been specified as the loopback interface.
A range of MAC addresses that will be use to create "fake" DHCP
clients. Used when the DHCP server(s) map clients by the MAC
address. An indication of the need for MAC ranges is when the DHCP
server keeps giving out the same IP for each client.
Specifies the number of leases to keep prefetched. Prefetching will
improve performance since there will not be any wait time when a
system requests an IP (while there exists prefetched IPs).
190
Chapter 5. DHCP Services