After Kea for 1 year, reverted back to Bind (ISC)

maverickws

@johnpoz I don't know what version had it enabled by default, but I think 24.03 was mentioned.

The warning on ISC deprecation imposes a sense of urgency in making the change. I agree the warning should only be displayed when feature parity has been achieved.

johnpoz

@maverickws why would they make something default to switch over to that is no where close to parity, and pretty much all it does is hand out IPs from a pool..

I highly doubt it was defaulted to use on any install out of the box.. That just makes zero sense for them to clearly shoot themselves in the foot..

Maybe their tac was just sitting there idle without any tickets.. Oh hey lets make a dhcp server that is no where close to ready and we blogged and filled the release notes about it not supporting X, Y and Z etc.. But hey lets make it the default option ;) So we can get people screaming this doesn't work and open up tickets for our tac guys to have something to do ;)

I am sure they got plenty of those - after the user clicked to switch to it. Not like they didn't warn about it in the blog and in release notes.

maverickws

@johnpoz I don't know. Wasn't me that said Netgate made Kea default.

johnpoz

@maverickws maybe it was a typo

@Gertjan said this

"Unfortunately, it was activated by default. The pfSense user had to take some actions"

Maybe he meant to say

"Unfortunately, it wasn't activated by default. The pfSense user had to take some actions"

@Gertjan where did you see or hear that it was activated with no interaction from the user? Because I have not seen this with clean installs to VMs - nor does it make any sense to do something like that..

Gertjan

@johnpoz

I'm pretty sure it was activated after I installed (upgraded to) 23.09.

If it wasn't, the "issue" wouldn't exist, as it would be a simple "tried the new DHCP (KEA), and I didn't like it - and I switched back to what I had before (ISC)".

There are numerous examples where I and many other had to propose : "Problems with KEA ? Switch to ISC !".

If people were switching themselves to the new KEA, they would have know how to get back by themselves.

The bottom line is probably that the word depreciated doesn't scare me at all.

johnpoz

@Gertjan It makes zero sense for them to switch over to a package as the default when its nowhere near ready..

When 23.09 was the first release was even available in - and with all the warning about it being preview and missing a bunch of stuff. And clearly states OPT-IN..

https://docs.netgate.com/pfsense/en/latest/releases/23-09.html

https://www.netgate.com/blog/netgate-adds-kea-dhcp-to-pfsense-plus-software-version-23.09-1

"If people were switching themselves to the new KEA, they would have know how to get back by themselves."

Pretty sure your giving users way to much credit here.. Most of them after clicking the warning - couldn't of told you what they were running.. Oh something to click, must click!

Patch

@johnpoz the Netgate bug is and always was the in applications alert description of the choice between KEA and ISC. There is no place for blatantly misleading information within a professional software product.

Arguing a user should know the built in alert was an error, and researched alternative information sources is also wrong.

The in application alert is a bug. Failure to correct it reflects poorly on Netgate.

Sure community support identifies the solution but that or other documentation doesn’t change the fact pfsense software has a glaring bug

johnpoz

@Patch said in After Kea for 1 year, reverted back to Bind (ISC):

fact pfsense software has a glaring bug

What bug is that? You have validation that pfsense auto switches to the preview copy of kea on its own without any user interaction?

Where has netgate stated that kea was ready for prime time? If you go use it without reading the release notes - sorry but that is on you.. Could it have been worded better, or not done at all at this time about the warning.. I would concur - but where is the "bug"?

Patch

@johnpoz it is possible to miss lead without actually lying.

Missing leading users within professional software is a bug.

johnpoz

@Patch said in After Kea for 1 year, reverted back to Bind (ISC):

Missing leading users within professional software is a bug.

I think you need to look up the definition of a bug.. And where did they mislead anyone.. I mean the warnings are glaring that it wasn't ready for prime time..

Sorry you didn't bother to read them.. Or anyone else - but that sure is not a "bug"

binfree

@maverickws said in After Kea for 1 year, reverted back to Bind (ISC):

One of the things we immediately missed was the inability of resolving names for locally set fixed ip leases

That was the deal breaker right there. And if this most basic of basic features is missing, what else is missing? What else doesn't work?

The warning about DHCP, after first installing pfSense, appears to any typical human as a firm instruction to activate KEA. It reads as though your system is going to be unsafe running a deprecated DHCP server if you don't choose KEA - "RIGHT NOW!"

There were no warnings about KEA "not being ready for prime time." Only the opposite - that you'd better run KEA OR ELSE - because the original ISC DHCP is deprecated, outdated, and shouldn't be used. This is how anyone not involved in support (official or otherwise) with Netgate will have understood the messaging.

To make matters worse, if you don't select KEA, the warning is persistent.

The decision to include that warning was misplaced and foolish. The decision to include KEA, which at best can be considered an early beta, is itself also foolish. At most, it could have been available in Packages to install for anyone curious. But if I were leading the project, it wouldn't have even been available there.

Patch

@johnpoz said in After Kea for 1 year, reverted back to Bind (ISC):

the definition of a bug.

An error in documentation is a bug, many are recorded in redmine

@johnpoz said in After Kea for 1 year, reverted back to Bind (ISC):

I mean the warnings are glaring that it wasn't ready for prime time.

The warnings are correct in the blog site / press release.
But that is not the subject of this thread.

The bug is in the pfsense software not the press release.
A deceptive alert within professional software is a bug.

JonathanLee

KEA is the fix for the twilighted DHCP server, that DHCP software the developers no longer release updates for. pfSense/Netgate had to redesign a lot of code just to get KEA to work, again with anything new there is a timeline for software convergence that is expected. That is why it was a depreciation notice and not automatically merged to KEA. Thanks for sharing your experience with the community. Sorry you had that experience. Again with the Boot Environment features mitigation for such issues is a breeze to jump back to a known good configuration. I love Boot Environments.