none
DHCP Migration From 2003 to 2008 R2 And DHCP Callout

    질문

  • Hi !

    I am going to migrate my 2003 dhcp server to a 2008 r2

    there are many good topics about it but i have a question

    we use dhcp callout and have a list of about 300 hosts which are allowed to get ip from dhcp server

    i like this list to be on the allow list on destination server

    is it ok ? does it require any additional steps ?

    and we have many reservations which of course i think there should not be a problem with there

    i am just worried about my callout list

    2012년 3월 31일 토요일 오후 1:07

답변

  • Are you using the MACFilter callout or the OptonsBasedAssignment callout?

    Windows 2008 R2 DHCP has MACFiltering built in, and there's a MAC Filter import tool available. As for OptionsBased, that should import because the options are part of the database.

    .

    MAC Filtering is built into 2008 R2 DHCP, so no need to install the MAC Filter Callout. Also, it can be imported when migrating DHCP to a Windows 2008 R2 DHCP Server:
    MAC Filter Import Tool, Microsoft TeamDHCP, 2/16/2009
    http://blogs.technet.com/b/teamdhcp/archive/2009/02/16/mac-filter-import-tool.aspx

    .

    Migration of DHCP Server from Windows Server 2003 to Windows Server 2008, Microsoft TeamDHCP, 2/18/2009
    Quoted: "Backup and Restore are not expected to work across server versions as the DHCP database format has changed between Windows Server 2003 and Windows Server 2008. The recommended procedure for DHCP server migration is to use the export import commands through netsh."
    http://blogs.technet.com/b/teamdhcp/archive/2009/02/18/migration-of-dhcp-server-from-windows-server-2003-to-windows-server-2008.aspx

    .


    Ace Fekay
    MVP, MCT, MCITP Enterprise Administrator, MCTS Windows 2008 & Exchange 2007 & Exchange 2010, Exchange 2010 Enterprise Administrator, MCSE & MCSA 2003/2000, MCSA Messaging 2003
    Microsoft Certified Trainer
    Microsoft MVP - Directory Services
    Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php

    This posting is provided AS-IS with no warranties or guarantees and confers no rights.

    FaceBook Twitter LinkedIn

    • 답변으로 표시됨 MohammadG 2012년 4월 1일 일요일 오후 12:44
    2012년 4월 1일 일요일 오전 2:53
  • As for Options or Vendor classes, see if the following will help:

    • User classes, for assigning options to clients identified as sharing a common need for similar DHCP options configuration.
    • Vendor classes, for assigning vendor-specific options (sucha s operating systems) to clients identified as sharing a commonly defined vendor type.

    .

    Managing User Classes:
    Applies To: Windows Server 2008 R2
    "User classes allow DHCP clients to differentiate themselves by specifying a User Class option. When available for client use, this option includes a user-determined class ID that can help to group clients of similar configuration needs within a scope.  For example, you might support users and computers with mobile computing needs by configuring a user class at the DHCP server and setting the related class ID at the client computers."
    http://technet.microsoft.com/en-us/library/dd145308(v=ws.10).aspx 

    More About Predefined DHCP Options:
    Applies To: Windows Server 2008 R2
    http://technet.microsoft.com/en-us/library/dd759232.aspx  

    Using option classes
    http://technet.microsoft.com/en-us/library/cc775694(v=ws.10).aspx 

    How to Create a New DHCP User or Vendor Class
    First configure the Option Class, then you set it at the client side, such as (quoted from the article):
    To Set the Specified DHCP Class ID String for Client Computers:
    Client computers that connect to a Windows 2000-based DHCP server can use the following command to set the specified DHCP class ID string:
    ipconfig /setclassid adapter_name class_id
    For example, to configure an adapter called "Local Area Connection" with a user class ID called "myuserclass", type ipconfig /setclassid Local Area Connection myuserclass at a command prompt, and then press ENTER.
    http://support.microsoft.com/kb/240247 

    .

    Example step by step

    Use DHCP Class to deny Internet access to unauthorized machines
    http://www.techrepublic.com/article/use-dhcp-class-to-deny-internet-access-to-unauthorized-machines/5498436 

    .


    Ace Fekay
    MVP, MCT, MCITP Enterprise Administrator, MCTS Windows 2008 & Exchange 2007 & Exchange 2010, Exchange 2010 Enterprise Administrator, MCSE & MCSA 2003/2000, MCSA Messaging 2003
    Microsoft Certified Trainer
    Microsoft MVP - Directory Services
    Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php

    This posting is provided AS-IS with no warranties or guarantees and confers no rights.

    FaceBookTwitterLinkedIn


    • 편집됨 Ace Fekay [MCT]MVP 2012년 4월 2일 월요일 오후 5:41
    • 답변으로 표시됨 MohammadG 2012년 4월 3일 화요일 오전 4:00
    2012년 4월 2일 월요일 오후 5:40

모든 응답

  • Are you using the MACFilter callout or the OptonsBasedAssignment callout?

    Windows 2008 R2 DHCP has MACFiltering built in, and there's a MAC Filter import tool available. As for OptionsBased, that should import because the options are part of the database.

    .

    MAC Filtering is built into 2008 R2 DHCP, so no need to install the MAC Filter Callout. Also, it can be imported when migrating DHCP to a Windows 2008 R2 DHCP Server:
    MAC Filter Import Tool, Microsoft TeamDHCP, 2/16/2009
    http://blogs.technet.com/b/teamdhcp/archive/2009/02/16/mac-filter-import-tool.aspx

    .

    Migration of DHCP Server from Windows Server 2003 to Windows Server 2008, Microsoft TeamDHCP, 2/18/2009
    Quoted: "Backup and Restore are not expected to work across server versions as the DHCP database format has changed between Windows Server 2003 and Windows Server 2008. The recommended procedure for DHCP server migration is to use the export import commands through netsh."
    http://blogs.technet.com/b/teamdhcp/archive/2009/02/18/migration-of-dhcp-server-from-windows-server-2003-to-windows-server-2008.aspx

    .


    Ace Fekay
    MVP, MCT, MCITP Enterprise Administrator, MCTS Windows 2008 & Exchange 2007 & Exchange 2010, Exchange 2010 Enterprise Administrator, MCSE & MCSA 2003/2000, MCSA Messaging 2003
    Microsoft Certified Trainer
    Microsoft MVP - Directory Services
    Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php

    This posting is provided AS-IS with no warranties or guarantees and confers no rights.

    FaceBook Twitter LinkedIn

    • 답변으로 표시됨 MohammadG 2012년 4월 1일 일요일 오후 12:44
    2012년 4월 1일 일요일 오전 2:53
  • Are you using the MACFilter callout or the OptonsBasedAssignment callout?

    Windows 2008 R2 DHCP has MACFiltering built in, and there's a MAC Filter import tool available. As for OptionsBased, that should import because the options are part of the database.

    .

    MAC Filtering is built into 2008 R2 DHCP, so no need to install the MAC Filter Callout. Also, it can be imported when migrating DHCP to a Windows 2008 R2 DHCP Server:
    MAC Filter Import Tool, Microsoft TeamDHCP, 2/16/2009
    http://blogs.technet.com/b/teamdhcp/archive/2009/02/16/mac-filter-import-tool.aspx

    .

    Migration of DHCP Server from Windows Server 2003 to Windows Server 2008, Microsoft TeamDHCP, 2/18/2009
    Quoted: "Backup and Restore are not expected to work across server versions as the DHCP database format has changed between Windows Server 2003 and Windows Server 2008. The recommended procedure for DHCP server migration is to use the export import commands through netsh."
    http://blogs.technet.com/b/teamdhcp/archive/2009/02/18/migration-of-dhcp-server-from-windows-server-2003-to-windows-server-2008.aspx

    .


    Ace Fekay
    MVP, MCT, MCITP Enterprise Administrator, MCTS Windows 2008 & Exchange 2007 & Exchange 2010, Exchange 2010 Enterprise Administrator, MCSE & MCSA 2003/2000, MCSA Messaging 2003
    Microsoft Certified Trainer
    Microsoft MVP - Directory Services
    Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php

    This posting is provided AS-IS with no warranties or guarantees and confers no rights.

    FaceBookTwitterLinkedIn

    Thanks So Much ACE !

    MAC Filter Import Tool was exactly what I needed

    But I have a few more questions if you dont mind

    1- Is the process for migration between 2 win 2008 r2 server as 2003 to 2008 ? or it can be simply done using backup and restore ?

    2- I did not know about Option based assignment. i studied a little but i could not learn much. as i understood, vendor class option is somehow identifying the OS of client. for example, with this tool we can give different ip address to the PC's based on their O.S. (Windows 7 clients ip address is A while XP Clients are B) am i right ? and what is that user class option ? i did not find any useful simple article fir that. i mean i do not get what clients set and send in this option ! can you give me a brief explanation of that ? or maybe a good link if you are busy

    3- on 2003 macfilter callout dll thins was very simple. everyone whose MAC is in this text file can obtain address and others cant. But in 2008 R2 we have 2 different (Allow And Deny) which both of them can be enabled or disabled. So we have four options (both disabled, both enabled, or one enabled and the other disabled)

    what happen in this situations ? what i guess is as follows. please correct me

    both disabled --> All can get address

    both enabled --> if mac is on deny list  it can not get ip, if mac is not in allow and not in deny again it can not get ip, it can only when is not in deny and is is allow

    allow enabled, deny disabled --> can get ip only if is in allow list

    deny enabled, allow disabled --> if is not in deny list it can get ip

    thanks for reading this long and appreciate your valuable answers.

    2012년 4월 1일 일요일 오후 1:06
  • 1. No, don't use backup/restore. You definitely want to use Netsh's DHCP import/export method. Take a look at these links:

    Steps to move a DHCP database from a Windows Server 2003 or 2008 ...Jun 27, 2008
    https://blogs.technet.com/b/networking/archive/2008/06/27/steps-to-move-a-dhcp-database-from-a-windows-server-2003-or-2008-to-another-windows-server-2008-machine.aspx 

    How to Migrate DHCP from Windows 2003 to Windows 2008 R2
    http://networkadminkb.com/kb/Knowledge%20Base/Windows2008/How%20to%20Migrate%20DHCP%20from%20Windows%202003%20to%20Windows%202008%20R2.aspx 

    .

    2. The classes will be migrated with the above method. Read the second article above.

    .

    3. I ahven't tested it yet, but I assume that if you have a MAC deny, that will supercede it. Test it and let us know your results, which will benefit others with the same question. :-)

    .


    Ace Fekay
    MVP, MCT, MCITP Enterprise Administrator, MCTS Windows 2008 & Exchange 2007 & Exchange 2010, Exchange 2010 Enterprise Administrator, MCSE & MCSA 2003/2000, MCSA Messaging 2003
    Microsoft Certified Trainer
    Microsoft MVP - Directory Services
    Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php

    This posting is provided AS-IS with no warranties or guarantees and confers no rights.

    FaceBook Twitter LinkedIn

    2012년 4월 2일 월요일 오후 3:55
  • No, don't use backup/restore. You definitely want to use Netsh's DHCP import/export method. Take a look at these links:

    I used server migration Tools and it went all ok from 2003 to 2008. what i asked is about moving from one 2008 r2 server to another 2008. is export and import enough to transfer all dhcp info to the other one ?

    2. The classes will be migrated with the above method. Read the second article above.

    I Know But I do not understand these classes well.

    this is my problem : as i understood, vendor class option is somehow identifying the OS of client. for example, with this tool we can give different ip address to the PC's based on their O.S. (Windows 7 clients ip address is A while XP Clients are B) am i right ? and what is that user class option ? i did not find any useful simple article fir that. i mean i do not get what clients set and send in this option ! can you give me a brief explanation of that ? or maybe a good link if you are busy

    3. I hven't tested it yet, but I assume that if you have a MAC deny, that will supercede it. Test it and let us know your results, which will benefit others with the same question. :-)

    Yes I was right

    to get sure i asked a question about it here :

    http://social.technet.microsoft.com/Forums/en-US/winserverNIS/thread/40ec739a-a0b9-4f84-8148-8a94dcb8acb5

    Yes, you are right. For the detail explication please take look the guide below:

    • Enable and define an explicit allow list. The DHCP server provides DHCP services only to clients whose MAC addresses are in the allow list. Any client that previously received IP addresses is denied address renewal if its MAC address isn’t on the allow list.
    • Enable and define an explicit deny list. The DHCP server denies DHCP services only to clients whose MAC addresses are in the deny list. Any client that previously received IP addresses is denied address renewal if its MAC address is on the deny list.
    • Enable and define an allow list and a block list. The block list has precedence over the allow list. This means that the DHCP server provides DHCP services only to clients whose MAC addresses are in the allow list, provided that no corresponding matches are in the deny list. If a MAC address has been denied, the address is always blocked even if the address is on the allow list.

    Enable and Configure MAC Address Filtering
    http://technet.microsoft.com/en-us/magazine/ff521761.aspx


    • 편집됨 MohammadG 2012년 4월 2일 월요일 오후 4:36
    2012년 4월 2일 월요일 오후 4:35
  • M.Ganji, I saw that post and TIger's response.

    As I thought, anytime there is a "Deny" on something, whether it's for Folder permissions, Exchange mailbox access, or otherwise, it works the same with DHCP MAC Filters when you are also using Vendor or User Options. The the MAC filter Deny will always supercede and apply before the Options/Vendor Allow/Deny list.

    .


    Ace Fekay
    MVP, MCT, MCITP Enterprise Administrator, MCTS Windows 2008 & Exchange 2007 & Exchange 2010, Exchange 2010 Enterprise Administrator, MCSE & MCSA 2003/2000, MCSA Messaging 2003
    Microsoft Certified Trainer
    Microsoft MVP - Directory Services
    Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php

    This posting is provided AS-IS with no warranties or guarantees and confers no rights.

    FaceBook Twitter LinkedIn

    2012년 4월 2일 월요일 오후 5:30
  • As for Options or Vendor classes, see if the following will help:

    • User classes, for assigning options to clients identified as sharing a common need for similar DHCP options configuration.
    • Vendor classes, for assigning vendor-specific options (sucha s operating systems) to clients identified as sharing a commonly defined vendor type.

    .

    Managing User Classes:
    Applies To: Windows Server 2008 R2
    "User classes allow DHCP clients to differentiate themselves by specifying a User Class option. When available for client use, this option includes a user-determined class ID that can help to group clients of similar configuration needs within a scope.  For example, you might support users and computers with mobile computing needs by configuring a user class at the DHCP server and setting the related class ID at the client computers."
    http://technet.microsoft.com/en-us/library/dd145308(v=ws.10).aspx 

    More About Predefined DHCP Options:
    Applies To: Windows Server 2008 R2
    http://technet.microsoft.com/en-us/library/dd759232.aspx  

    Using option classes
    http://technet.microsoft.com/en-us/library/cc775694(v=ws.10).aspx 

    How to Create a New DHCP User or Vendor Class
    First configure the Option Class, then you set it at the client side, such as (quoted from the article):
    To Set the Specified DHCP Class ID String for Client Computers:
    Client computers that connect to a Windows 2000-based DHCP server can use the following command to set the specified DHCP class ID string:
    ipconfig /setclassid adapter_name class_id
    For example, to configure an adapter called "Local Area Connection" with a user class ID called "myuserclass", type ipconfig /setclassid Local Area Connection myuserclass at a command prompt, and then press ENTER.
    http://support.microsoft.com/kb/240247 

    .

    Example step by step

    Use DHCP Class to deny Internet access to unauthorized machines
    http://www.techrepublic.com/article/use-dhcp-class-to-deny-internet-access-to-unauthorized-machines/5498436 

    .


    Ace Fekay
    MVP, MCT, MCITP Enterprise Administrator, MCTS Windows 2008 & Exchange 2007 & Exchange 2010, Exchange 2010 Enterprise Administrator, MCSE & MCSA 2003/2000, MCSA Messaging 2003
    Microsoft Certified Trainer
    Microsoft MVP - Directory Services
    Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php

    This posting is provided AS-IS with no warranties or guarantees and confers no rights.

    FaceBookTwitterLinkedIn


    • 편집됨 Ace Fekay [MCT]MVP 2012년 4월 2일 월요일 오후 5:41
    • 답변으로 표시됨 MohammadG 2012년 4월 3일 화요일 오전 4:00
    2012년 4월 2일 월요일 오후 5:40