Update to 2.5.2 from 2.4.5-p1 - no traffic from LAN to WAN anymore

tohil

@stephenw10

I've drilled it down a littlebit more... missing automatic outbound NAT rules is caused by enabling "Configuration Override" on DHCP WAN Interface... I need the following option dhclient option 60 for my VDSL ISP:

interface "{interface}" {
  send dhcp-class-identifier "100008,0001,,pfsense 2.4";
}

Is there an other way to set this values in GUI directly? maybe you can reproduce this on your lab?
this option is not uncommon here in switzerland for users, which are not using the providers standard router....

stephenw10

Ah, that's interesting. And that behaviour changed between 2.4.5 and 2.5? You had that custom option there in 2.4.5p1 and auto outbound NAT rules were created?

Nice catch! That could have taken an age to find.

You should be able to set that in the 'Send Options' that are made available when you check 'Advanced Configuration'. Without having to use configuration override entirely.

Steve

stephenw10

Yeah, if you set it there you get, for example:

interface "vtnet0" {

	supersede interface-mtu 0;
# DHCP Protocol Timing Values

# DHCP Protocol Options
	send dhcp-class-identifier "100008,0001,,pfsense 2.4";

	script "/usr/local/sbin/pfSense-dhclient-script";
}

But automatic outbound NAT rules are still created.

Steve

tohil

@stephenw10 Hi Steve,

yes this setting worked since years until now :-)

Can you tell me where the mentioned interface config file is located at?
I will compare the file if I add the addition options by config file and by gui setting.

can you tel me at which gui field this option 60 has to be added?

• Send options
• Request options (Option 55)
• Require options
• Option Modifiers

thanks for your reply, I will test it as soon as possible.

regards Angelo

stephenw10

It's set in 'Send Options'.
The file is /var/etc/dhclient_wan.conf, assuming it's your WAN interface.

Steve

tohil

@stephenw10
Seems to working...not tested on prod system yet

but adding

dhcp-class-identifier "100008,0001,,pfsense 2.4"

to send options genereates the following config file, which matches my old config method. And Outbound NAT Rules are created!

interface "em0" {

        supersede interface-mtu 0;
# DHCP Protocol Timing Values

# DHCP Protocol Options
        send dhcp-class-identifier "100008,0001,,pfsense 2.4";

        script "/usr/local/sbin/pfSense-dhclient-script";
}

I'm going to test this on prod asap! thanks Steve!

tohil

@stephenw10

Changed WAN Interface Config on 2.4.5-p1, created a backup and performed a fresh installation with 2.5.2.

working now :-)

thanks for your support

tohil

I'm using RAM drives, /var is showing up multiple times on dashboard System Status. Is this known?

noplan

@tohil

ram drive has something to do with no traffic from LAN 2 WAN after update ?
brNP

tohil

@noplan No... just mentioned it... its off-topic... if you are mod, you can delete :-)
issue was just the dhcp settings on WAN.

noplan

@tohil

no no mod just wondering .. .. still got here some 2.4.5xxx poxes to do
even a p1 version yesterday, but was not able to run in the same problem like you ... ;)

brNP

stephenw10

In 2.5.2? Are you using ZFS?

That seems familiar though I'm not hitting it here...

Edit: Yup, this: https://redmine.pfsense.org/issues/12144

It's ugly but just cosmetic.

Steve

tohil

@stephenw10

Yes, ZFS after reinstalled 2.5.2. Bug seems to be known and would be fixed someday... as you said, its just cosmetic :-)