DHCP Server on LAN Interface requires Firewall Rules

tkrausjr

Everything I have researched points to the fact that I dont need to allow UDP ports for DHCP traffic to work on an internal (LAN) interface.
Simple Two interface (WAN and LAN) setup on a Virtual Machine running 2.5.2

WAN = 10.17x.xx.xx / 25
LAN = 192.168.103.1 / 24
DHCP enabled on LAN and PFsense in Firewall / NAT Hybrid Mode.

I can not get reliable DHCP responses to my clients and they are sometimes delayed a LONG time until I add the following rule to my pfsense LAN interface.

Protocol: IPv4 UDP
Source: *
Destination: *
Dst Port: 67-68

Can someone confirm this is expected behavior.

johnpoz

@tkrausjr you have no need to add any rules on any interface dhcp is enabled. They are auto added an hidden... Look at the full rules..

https://docs.netgate.com/pfsense/en/latest/firewall/pf-ruleset.html

example these are mine..

if you needed to add a rule for dhcp to work - and you had not rule how would it ever work.. Whatever issue your having is not related to needing a firewall rule to allow for dhcp..