ansible/roles/isc-dhcp-server/templates/dhcp/dhcpd.conf.j2

# dhcpd.conf
# {{ ansible_managed }}

default-lease-time 86400;
max-lease-time 86400;

# Option definitions common to all supported networks.

# The MTU theoretically could go as high as 1496 (4-byte VLAN tag).
option interface-mtu 1400;
# XXX: hardcoded DNS for now
option domain-name-servers 80.67.169.12, 1.1.1.1;
option root-path "/";

# The ddns-updates-style parameter controls whether or not the server will
# attempt to do a DNS update when a lease is confirmed. We default to the
# behavior of the version 2 packages ('none', since DHCP v2 didn't
# have support for DDNS.)
ddns-update-style none;

# If this DHCP server is the official DHCP server for the local
# network, the authoritative directive should be uncommented.
authoritative;

# Use this to send dhcp log messages to a different log file (you also
# have to hack syslog.conf to complete the redirection).
# XXX: This was enabled in one building and disabled in another.
#log-facility local7;


# Bornes WiFi
subnet 10.{{ subnet_ids.ap }}.0.0 netmask 255.255.0.0 {
       interface "ens19";
       option subnet-mask 255.255.0.0;
       option broadcast-address 10.{{ subnet_ids.ap }}.255.255;
       option routers 10.{{ subnet_ids.ap }}.0.250;
       option domain-name "borne.auro.re";
       option domain-search "borne.auro.re";
       include "/var/local/re2o-services/dhcp/generated/dhcp.borne.auro.re.list";

       deny unknown-clients;
}

# Users filaire
subnet 10.{{ subnet_ids.users_wired }}.0.0 netmask 255.255.0.0 {
       interface "ens20";
       option subnet-mask 255.255.0.0;
       option broadcast-address 10.{{ subnet_ids.users_wired }}.255.255;
       option routers 10.{{ subnet_ids.users_wired }}.0.240;
       option domain-name "fil.{{ apartment_block }}.auro.re";
       option domain-search "auro.re";
       include "/var/local/re2o-services/dhcp/generated/dhcp.fil.{{ apartment_block }}.auro.re.list";

       deny unknown-clients;
}


# Users WiFi
subnet 10.{{ subnet_ids.users_wifi }}.0.0 netmask 255.255.0.0 {
       interface "ens21";
       option subnet-mask 255.255.0.0;
       option broadcast-address 10.{{ subnet_ids.users_wifi }}.255.255;
       option routers 10.{{ subnet_ids.users_wifi }}.0.240;
       option domain-name "wifi.{{ apartment_block }}.auro.re";
       option domain-search "auro.re";
       include "/var/local/re2o-services/dhcp/generated/dhcp.wifi.{{ apartment_block }}.auro.re.list";

       pool {
            range 10.{{ subnet_ids.users_wifi }}.8.0 10.{{ subnet_ids.users_wifi }}.10.255;

{% if dhcp_failover is defined %}
            failover peer "dhcp-failover";
{% endif %}
       }
}

{% if dhcp_failover is defined %}
failover peer "dhcp-failover" {
{% if inventory_hostname == dhcp_failover.primary_host %}
                primary;

                # MCLT = Maximum Client Lead Time.
                # Must be specified on the primary, forbidden on the secondary.
                mclt 3600;

                # Address or DNS name on which this node listens for connections
                # from its failover peer.
                address {{ dhcp_failover.primary_host }};
                peer address {{ dhcp_failover.secondary_host }};
{% endif %}
{% if inventory_hostname == dhcp_failover.secondary_host %}
                secondary;
                # Address and peer address are reversed on the secondary node.
                address {{ dhcp_failover.secondary_host }};
                peer address {{ dhcp_failover.primary_host }};
{% endif %}

                # The following options can be shared between primary and
                # secondary failover peers.
                port 647;
                peer port 647;
                split 128;
                max-response-delay 30;
                max-unacked-updates 10;
                load balance max seconds 3;
          }
{% endif %}