KEA DHCP - lacking features

jimp

The docs don't mention Kea because the goal is eventually to have feature and UI parity and having to keep all the docs updated as things are addressed would be quite a lot more work that would just be undone in a couple months. Once it's complete there won't be many differences in the UI between ISC/Kea.

The warnings are both accurate. ISC is EOL and people should consider switching. The features needed for the bulk of users are there and work and many if not most users could switch and barely notice a difference in behavior. However, since it isn't feature complete, the warning about that in the release notes/blog/etc is necessary and accurate.

The users who post on the forum/social media in general tend to be more advanced and sure they may want/need some features that aren't there yet, but you have to remember they are not necessarily representative of the hundreds of thousands of other users.

RobbieTT

@jimp said in KEA DHCP - lacking features:

ISC is EOL and people should consider switching. The features needed for the bulk of users are there and work and many if not most users could switch and barely notice a difference in behavior.

Thanks Jim and a 'note' in the GUI that reflected the above quote is close to ideal. To avoid startling any non-technical folk you could soften it further by stating that "ISC remains fully supported but is nearing EOL and...".

I can testify that it is indeed remarkably easy and painless to switch between the two; something I commented positively on during the dev stage.

️

michmoor

@jimp said in KEA DHCP - lacking features:

The users who post on the forum/social media in general tend to be more advanced and sure they may want/need some features that aren't there yet, but you have to remember they are not necessarily representative of the hundreds of thousands of other users.

This is a fair point.
Follow up - Do we need to wait for 24.03 to get the feature complete Kea or can it be delivered in an update prior?

jimp

@michmoor said in KEA DHCP - lacking features:

Follow up - Do we need to wait for 24.03 to get the feature complete Kea or can it be delivered in an update prior?

Most likely it will take enough time to implement that it will be close to the release before it's ready anyhow, but if it's ready before then, we are considering different methods of distribution (e.g. as a system patches update if possible). Though it will likely require additional binaries/daemons to manage the DNS API integration which would limit the viable methods. But we're keeping our options open for the moment.

JonathanLee

@maverickws said in KEA DHCP - lacking features:

DHCP option 26.
Also . . .

Option 252 WPAD
Option 42 NTP
Option 3 Gateway
Option 6 DNS

mcury

@JonathanLee said in KEA DHCP - lacking features:

@maverickws said in KEA DHCP - lacking features:

DHCP option 26.
Also . . .

Option 252 WPAD
Option 42 NTP
Option 3 Gateway
Option 6 DNS

I only use DHCP 43, I use it to adopt Unifi switch Mini to Unifi controller, but since it is already adopted, I don't need it anymore, so I'm already testing KEA and so far, so good..

maverickws

I guess we'll end up realising that there are more users using "advanced" options that initially thought.

RobbieTT

Option 6 was the first one I noticed. Missing Option 42 was ok as everything I currently have points to an internal IP address.

️

JonathanLee

@RobbieTT do you also use 252 for wpad?

maverickws

@RobbieTT have to ask, why manually adding option 6 instead of using the section under DHCP Server:
Server Options > DNS Servers ?

I actually only use this when using high availability in order to put the VIP address there, but works fine tho.

RobbieTT

@JonathanLee said in KEA DHCP - lacking features:

@RobbieTT do you also use 252 for wpad?

Not currently, at least not on my home network. I don't think I have anything looking for wpad.

@maverickws said in KEA DHCP - lacking features:

@RobbieTT have to ask, why manually adding option 6 instead of using the section under DHCP Server:
Server Options > DNS Servers ?

I'm not sure I understand you?

️

maverickws

@RobbieTT when you configure the DHCP Service you go to

Services (Top Menu) > DHCP Server
Then you get the different interfaces where you're able to activate (enable) the DHCP Server service, correct?

When in here, you have a few configuration blocks:

"General DHCP Options"
"Primary Address Pool"
"Server Options"
"Other DHCP Options" (where we'd configure the extra DHCP options)

The "Server Options" block here already asks for DNS Servers, which correspond to DHCP option 6.

So, on normal operation I leave this blank and let the interface address be the DNS server (as I'm using unbound resolver, so the firewall is the DNS server).
On situations where HA is enabled, I put the shared virtual IP here.
So my question is, why adding manually option 6 with the DNS servers, instead of using the DNS Servers fields under "Server Options". Like could be a specific case and I was curious.

RobbieTT

@maverickws

Still confused on your distinctions.

I leave Services/DHCP Server/LAN/Server Options/DNS Servers on the default setting (ie interface address).

What gets pushed out to clients is this option (plus the IPv6 equivalent and Search Domains aka option 119, suitably redacted):

With Kea, the options do not seem to go out (6, 119, whatever) so from the client end you end up with this:

This is less than ideal.

️

maverickws

@RobbieTT Ok so this machine is still on Monterey but the same gist.

This is my pfSense config here at home with KEA currently going. But this section "Server Options" is exactly the same for ISC or KEA.

The default option is greyed out because I'm not entering anything manually.

So it will provide the clients with a DNS Server - pfSense itself - and passes the interface address, both IPv4 and IPv6:

My question again is trying to understand why to use (in ISC) a custom option "6" to pass the DNS servers, if you already have a GUI section for that?

RobbieTT

@maverickws said in KEA DHCP - lacking features:

My question again is trying to understand why to use (in ISC) a custom option "6" to pass the DNS servers, if you already have a GUI section for that?

Who said I was using a custom option with a GUI preset available?

As I said earlier, I use the default setting which provides the interface address. Same for option 119, I use the GUI Domain Name field.

The custom options on the GUI is really for those options that don't have a bespoke GUI field. Or are you of the mind that GUI preset options differ to those offered by the 'Custom' menu?

Anyway, I was more focused on options didn't seem to propagate with Kea and a DHCP renew or a clean skin left clients without this data.

️

maverickws

@RobbieTT said in KEA DHCP - lacking features:

Option 6 was the first one I noticed. Missing Option 42 was ok as everything I currently have points to an internal IP address.

️

Ok so I don't understand your answers, just that.

Server Options where you put the DNS Servers Address to pass on to clients is on the exact same place both on ISC or KEA. (corresponds to Option 6 but most people don't care or know that as there is a GUI field to set up).
You're claiming option 6 is missing? What do you mean? Missing from where then?
Cause I could only assume you were configuring Option 6 manually, under DHCP/BOOTP params.

In the regular settings for the DHCP service, the DNS fields are on the same spot, and are working as expected. You can actually see on my screenshots, using KEA, DNS Servers options right there.

RobbieTT

@maverickws

Ok - with Kea the information provided by DHCP Option 6 & 119 slowly vanished from my clients when they did a renewal. Perhaps my screenshots are not displaying for you but they show blanks where option 6 & 119 data should be present when I tested Kea over a few days and the information returning with ISC. If yours works ok in both ISC and Kea then that's great.

I don't know where the 'Custom Options' came from but as we are talking about what the client receives over DHCP it does not matter, as the client device does not care if a GUI box is used or not - it is just looking for the data in the message.

️

maverickws

@RobbieTT

Ok I think I got your issue.
So in my case this one here I don't manually add any DNS addresses. The firewall provides its own interface address as per default settings.
I haven't had those issues of the resolver address disappearing on any client.

Figured you were talking about the same issue I was - the whole custom DHCP option part just disappeared.
(I'm adding a screenshot for better understanding).

The "Custom Options" I mentioned are present on the ISC DHCP Server backend.
For those options where you don't get a GUI field, you add them here manually. And this feature is not present in KEA.

RobbieTT

@maverickws
I know where custom options reside and I only mentioned the impact at the client end.

️

maverickws

@RobbieTT

Ok.
But then I believe we are talking about two completely different things.
You're complaining that a present feature is not working, or malfunctioning.

I'm complaining about the whole freaking section of Custom DHCP Options disappearing, not being there, the impossibility of configuring the interface MTU via DHCP Options. So if you're having an issue with the DNS Servers options disappearing from clients or whatever that is, that is not the kind of issue I opened this thread to talk about. I'm talking about actual features that are no longer there, at all.
Completely different things. I'd suggest a new thread to approach that specific issue. Thank you.