Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    DHCP on OPT interface not working

    Scheduled Pinned Locked Moved DHCP and DNS
    11 Posts 5 Posters 5.1k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • valnarV Offline
      valnar
      last edited by

      I created the pfSense box on Vmware, if that matters.  Assigned all three NIC's to different vlans in vSphere.

      1 Reply Last reply Reply Quote 0
      • K Offline
        kejianshi
        last edited by

        You need to:

        1.  Make a set of "pass all" firewall rules on the opt similar to what you see on lan

        2.  Go to dhcp server and enable dhcp on opt interface like it is on lan and set up the dhcp range similar to lans

        I said similar - not same.

        Make the opt subnet and ip different than lan

        1 Reply Last reply Reply Quote 0
        • valnarV Offline
          valnar
          last edited by

          @kejianshi:

          You need to:

          1.  Make a set of "pass all" firewall rules on the opt similar to what you see on lan

          2.  Go to dhcp server and enable dhcp on opt interface like it is on lan and set up the dhcp range similar to lans

          I said similar - not same.

          Make the opt subnet and ip different than lan

          Yeah, already did all that.  It's setup correctly, but no DHCP is passing to the clients.

          1 Reply Last reply Reply Quote 0
          • DerelictD Offline
            Derelict LAYER 8 Netgate
            last edited by

            Then you have something hosed in vsphere or elsewhere at layer 2.  Stop looking at pfSense.

            Chattanooga, Tennessee, USA
            A comprehensive network diagram is worth 10,000 words and 15 conference calls.
            DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
            Do Not Chat For Help! NO_WAN_EGRESS(TM)

            1 Reply Last reply Reply Quote 0
            • johnpozJ Online
              johnpoz LAYER 8 Global Moderator
              last edited by

              "Assigned all three NIC's to different vlans in vSphere."

              You have something messed up there..  Why would you assign them to different vlans in vpshere?

              So do you have vlans setup in pfsense?  What does the physical layer look like?  I am with Derelict – you got something messed up in vmware or layer 2 that your dhcp discovers are not even getting to pfsense..  To validate just do a sniff on the interface in pfsense - do you see dhcp discover?  Do you see pfsense send out offers if it sees the discover?

              An intelligent man is sometimes forced to be drunk to spend time with his fools
              If you get confused: Listen to the Music Play
              Please don't Chat/PM me for help, unless mod related
              SG-4860 25.07 | Lab VMs 2.8, 25.07

              1 Reply Last reply Reply Quote 0
              • valnarV Offline
                valnar
                last edited by

                I just tested it on an ALIX board and it works fine, so yes, something is amuck in VMware that is preventing DHCP offers.

                1 Reply Last reply Reply Quote 0
                • valnarV Offline
                  valnar
                  last edited by

                  Turned out to be a layer-2 problem, and I don't know why.  No arp either.  Deleted the vlan in vSphere and my switching infrastructure and created a whole new vlan ID.  Tagged everything and it works fine now.  I guess I have a "dead" vlan.

                  1 Reply Last reply Reply Quote 0
                  • johnpozJ Online
                    johnpoz LAYER 8 Global Moderator
                    last edited by

                    Without understanding your vsphere setup not sure if you would even need vlans or tagging - what did you setup on the vswitches?  Do you have devices with multiple vlans connected to that vswitch.  How does that connect to the physical world?

                    An intelligent man is sometimes forced to be drunk to spend time with his fools
                    If you get confused: Listen to the Music Play
                    Please don't Chat/PM me for help, unless mod related
                    SG-4860 25.07 | Lab VMs 2.8, 25.07

                    1 Reply Last reply Reply Quote 0
                    • K Offline
                      kejianshi
                      last edited by

                      Glad you found your problem.

                      1 Reply Last reply Reply Quote 0
                      • A Offline
                        apesjr
                        last edited by

                        Hi guys.
                        read my response in: https://forum.pfsense.org/index.php?topic=80478.0

                        1 Reply Last reply Reply Quote 0
                        • First post
                          Last post
                        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.