We have hundreds of production servers that are set to boot PXE, and then boot hard drive. These servers have not been discovered by MAAS, and they rarely reboot. But when one of these servers did reboot, MAAS would push the auto-discovery image to them, and then shut them down when done discovering, causing serious service interruptions. In order to fix this in the safest way possible, we created these dhcp snippets to prevent PXE booting unless whitelisted:
# global snippet
ignore booting;
class "allow-mac"
{
match substring (hardware, 1, 6);
allow booting;
}
and then we added snippets per subnet like this to allow auto-discovery and deployment per mac address:
subclass "allow-mac" A1:B2:34:56:7C:D8;
With the upcoming removal of dhcp snippets, we urgently need this whitelisting feature implemented in a different way. We certainly appreciate your time and attention on this.
Spencer Lines
Senior Site Reliability Engineer