DHCP client option 60
-
My ISP requires setting option 60 in DHCP requests. I would like to add this to the DHCP client configuration for the WAN interface. I do not see an option for this in the GUI. A bit of searching indicates that this can be set from the CLI using "dhcp-class-identifier". What is the path to this configuration file?
Once set, will the value be retained? Or is the "Configuration Override" needed? I do not have the base file, so some help would be appreciated in configuring this.Thank you.
-
@dono said in DHCP client option 60:
the "Configuration Override" needed?
That's the answer.
You have a choice :
You use the GUI to enter the settings, and the GUI will create the /DHCP client file :/var/etc/dhclient_wan.conf
or
You check "Configuration Override" and you enter the path and file of your home-made DHCP client configuration file.@dono said in DHCP client option 60:
I do not have the base file, so some help would be appreciated in configuring this
Because we know what ISP you use ? What settings it needs ?
The biggest ISP in my country, France, is Orange, and they use several special DHCP OPTION codes so their "ISP-box" can negotiate a connection with the ISP.
pfSense - that is, the DHCP client it uses - can do the same thing, if its DHCP client is capable of handling the needed Option codes and their parameters.
Normally, the ISP does not make any details available about this subject, so their client is forced has to use the ISP box. This is compressible, as they can manage their own box very well. They don't want you use home made solution (like pfSense) because if something fails, client will still call the support (for something that the ISP can't support). -
Hi @gertjan,
@gertjan said in DHCP client option 60:
@dono said in DHCP client option 60:
the "Configuration Override" needed?
That's the answer.
You have a choice :
You use the GUI to enter the settings, and the GUI will create the /DHCP client file :/var/etc/dhclient_wan.conf
or
You check "Configuration Override" and you enter the path and file of your home-made DHCP client configuration file./var/etc/dhclient_wan.conf does not seem to exist until I modify a setting. I then copied the file to /var/etc/dhclient_wan.override and made changes. I then set the full path in "Configuration Override". Unfortunately, both files seem to disappear after reboot... How can this file be persisted?
@dono said in DHCP client option 60:
I do not have the base file, so some help would be appreciated in configuring this
Because we know what ISP you use ? What settings it needs ?
Apologies if I was unclear. I meant that I did not know what kind of DHCP client file format was being used by pfSense. I now know the format after reading the /var/etc/dhclient_wan.conf file that you pointed out.
My ISP is KDDI (in Japan).
Looking at packet captures from the ISP router, the DHCP DISCOVERY broadcast has the following options:
-Option: (60) Vendor class identifier
kddi-hgw1.1
-Option: (51)
3600s
-Option: (57) Maximum DHCP Message Size
576
-Option: (55) Parameter Request List
(1) Subnet Mask
(3) Router
(28) Broadcast Address
(43) Vendor-Specific Information
(15) Domain Name
(6) Domain Name Server
(12) Host NameAlso, I'm pretty sure that the MAC address needs to be be spoofed.
I have come up with the following dhclient_wan.override file.
interface "ix3" { supersede interface-mtu 0; timeout 0; retry 15; select-timeout 0; initial-interval 1; send dhcp-client-identifier "kddi-hgw1.1"; request subnet-mask,routers,broadcast-address,vendor-class-identifier,domain-name-servers,host-name; script "/usr/local/sbin/pfSense-dhclient-script"; }
The biggest ISP in my country, France, is Orange, and they use several special DHCP OPTION codes so their "ISP-box" can negotiate a connection with the ISP.
pfSense - that is, the DHCP client it uses - can do the same thing, if its DHCP client is capable of handling the needed Option codes and their parameters.
Normally, the ISP does not make any details available about this subject, so their client is forced has to use the ISP box. This is compressible, as they can manage their own box very well. They don't want you use home made solution (like pfSense) because if something fails, client will still call the support (for something that the ISP can't support).Yeah, I can understand that. I don't expect my ISP to be able to support my pfSense box.
-
@dono said in DHCP client option 60:
/var/etc/dhclient_wan.conf does not seem to exist until
That file, and that file name, would exist, if seberal conditions are met :
The WAN interface is called "WAN"interface, and not, example, 'WAN2"
Also, you have to use the DHCP as connection method, as in that case the config file with 'that' name would get created and the dhcp-client process would get started to negotiate a connection on that WAN interface.@dono said in DHCP client option 60:
I then copied the file to /var/etc/dhclient_wan.override
To be on the save side : create your own file here : /root/dhclient_wan.override
Another thing to keep in mind :
The "dhcp-client" process isn't created by Netgate, it's probably a part of, like the dhco-server, the ISC DHCP package. There is a FreeBSD version of that package, and Netgate made it's own version out of it.
Be sure to check that it knows about how to handle a 'Option 60'. Some of tem may be known, but have to be included at 'compile time'. -
@gertjan said in DHCP client option 60:
@dono said in DHCP client option 60:
I then copied the file to /var/etc/dhclient_wan.override
To be on the save side : create your own file here : /root/dhclient_wan.override
This seems to work. Thank you.
Another thing to keep in mind :
The "dhcp-client" process isn't created by Netgate, it's probably a part of, like the dhco-server, the ISC DHCP package. There is a FreeBSD version of that package, and Netgate made it's own version out of it.
Be sure to check that it knows about how to handle a 'Option 60'. Some of tem may be known, but have to be included at 'compile time'.Understood. I am making progress now, but apparently there are a few more things to match. I have a DHCP packet capture from the ISP router, so I am altering and comparing the output until I get it just right.
-
Upon further investigation, it does not seem that the override settings are being applied. I've made several changes to the override file and taken packet captures, but none of the changes are being reflected in the captures. I've checked that the full path is correct. I've also rebooted as well. Do you have any further advice? Thank you.
-
Look in the forum "DHCP and DNS", there is a thread that talks about DHCP issues with his provider. There was a solution : DHCP client unable to get lease from cable provider [solved]