KEA DHCP - lacking features

Robert_Knabe

@maverickws said in KEA DHCP - lacking features:

Hiya,

I have taken a look into the new DHCP Server service, KEA, only to find out that when enabled, the Additional BOOTP/DHCP Options disappear.

Now, Additional BOOTP/DHCP Options is a real thing that provides said DHCP config options to the client.
I have dozens of machines that require this option, and by setting the MTU on the correspondent interface, that doesn't make the clients set the proper MTU.
That's DHCP option 26.

This is a critical component and honestly if pfSense is dropping this, I will have to find another firewall software that supports it. Even if I finally have to go Cisco, I mean, I'm completely baffled by this.

Another custom option that is indispensable to me is option 121, the configuration of routes on the client. Without that a centralized client management is not possible. For now i will keep ISC DHCP.

molykule

Hi,
I have 2 different subnets LAN and OPT1. I have a laptop, which has static IP address defined in both subnets, for lan the ip is 192.168.2.20, and for opt1, the ip is 192.168.3.20.
When I start kea dhcp, the dhcpd service would not start, I get error below

ERROR [kea-dhcp4.dhcp4.0x115d56a12000] DHCP4_INIT_FAIL failed to initialize Kea server: configuration error using file '/usr/local/etc/kea/kea-dhcp4.conf': Can't add class: Client Class: mac_000E9******* has already been defined (/usr/local/etc/kea/kea-dhcp4.conf:103:13)

ERROR [kea-dhcp4.dhcp4.0x115d56a12000] DHCP4_CONFIG_LOAD_FAIL configuration error using file: /usr/local/etc/kea/kea-dhcp4.conf, reason: Can't add class: Client Class: mac_000E9******* has already been defined (/usr/local/etc/kea/kea-dhcp4.conf:103:13)

ERROR [kea-dhcp4.dhcp4.0x115d56a12000] DHCP4_PARSER_FAIL failed to create or run parser for configuration element client-classes: Can't add class: Client Class: mac_000E9******* has already been defined (/usr/local/etc/kea/kea-dhcp4.conf:103:13)

I have removed the client identifier in both subnets. Is there any work around for such scenario or I am missing something,
I have posted it in separate in topic before, hoping if somebody else ran in the same issue, but haven't heard anything
thanks,

Gertjan

@molykule said in KEA DHCP - lacking features:

I have 2 different subnets LAN and OPT1. I have a laptop, which has static IP address defined in both subnets, for lan the ip is 192.168.2.20, and for opt1, the ip is 192.168.3.20.

First : I presume that you mean : a static MAC DHCP Lease, and not a static IP address setup, as (for me) such a setup doesn't use DHCP at all.

I do have the same scenario :
On LAN, my Phone has been set up with it's (non random !) MAC :

and on my PORTAL (another LAN or OPTx) interface :

Works fine for me

My phone gets 192.168.2.6 on the portal network, and 192.168.1.35 on the LAN network.

I'm using a non identical "Client ID" and "Hostname" on these two networks, could that be the reason ?

I've checked the kea config file : /usr/local/etc/kea/kea-dhcp4.conf - looks fine to me.

molykule

@Gertjan Thank you for replying. You are correct for static MAC DHCP lease.
however I still got the same error. I do notice that you dont have static ARP checked. I dont know if that could be the cause,
please let me know,
Thanks again for help,

In the file /usr/local/etc/kea/kea-dhcp4.conf, this occurs 3 times because its defined in 3 different subnets, which is erroring out.
{
"name": "mac_8C705AB898C4",
"test": "substring(hexstring(pkt4.mac, ''), 0, 12) == '8c705ab898c4'"
},

Log:
Nov 30 16:53:36 kea-dhcp4 36871 ERROR [kea-dhcp4.dhcp4.0x253335c12000] DHCP4_INIT_FAIL failed to initialize Kea server: configuration error using file '/usr/local/etc/kea/kea-dhcp4.conf': Can't add class: Client Class: mac_8C705AB898C4 has already been defined (/usr/local/etc/kea/kea-dhcp4.conf:164:13)
Nov 30 16:53:36 kea-dhcp4 36871 ERROR [kea-dhcp4.dhcp4.0x253335c12000] DHCP4_CONFIG_LOAD_FAIL configuration error using file: /usr/local/etc/kea/kea-dhcp4.conf, reason: Can't add class: Client Class: mac_8C705AB898C4 has already been defined (/usr/local/etc/kea/kea-dhcp4.conf:164:13)
Nov 30 16:53:36 kea-dhcp4 36871 ERROR [kea-dhcp4.dhcp4.0x253335c12000] DHCP4_PARSER_FAIL failed to create or run parser for configuration element client-classes: Can't add class: Client Class: mac_8C705AB898C4 has already been defined (/usr/local/etc/kea/kea-dhcp4.conf:164:13)
Nov 30 16:53:36 kea-dhcp4 36871 INFO [kea-dhcp4.hooks.0x253335c12000] HOOKS_LIBRARY_CLOSED hooks library /usr/local/lib/kea/hooks/libdhcp_lease_cmds.so successfully closed
Nov 30 16:53:36 kea-dhcp4 36871 INFO [kea-dhcp4.dhcpsrv.0x253335c12000] DHCPSRV_CFGMGR_SOCKET_TYPE_DEFAULT "dhcp-socket-type" not specified , using default socket type raw
Nov 30 16:53:36 kea-dhcp4 36871 INFO [kea-dhcp4.dhcpsrv.0x253335c12000] DHCPSRV_CFGMGR_ADD_IFACE listening on interface igb3
Nov 30 16:53:36 kea-dhcp4 36871 INFO [kea-dhcp4.dhcpsrv.0x253335c12000] DHCPSRV_CFGMGR_ADD_IFACE listening on interface igb2
Nov 30 16:53:36 kea-dhcp4 36871 INFO [kea-dhcp4.dhcpsrv.0x253335c12000] DHCPSRV_CFGMGR_ADD_IFACE listening on interface igb1
Nov 30 16:53:36 kea-dhcp4 36871 INFO [kea-dhcp4.dhcpsrv.0x253335c12000] DHCPSRV_CFGMGR_ADD_IFACE listening on interface igb0

johnpoz

@molykule said in KEA DHCP - lacking features:

I do notice that you dont have static ARP checked.

Yeah that for sure could be problematic - and currently static arp doesn't even work correctly using isc dhcpd.. Sure it sets them, but when your client does dhcp for it.. It switches from perm to dynamic in the arp table..

There is a thread and redmine about it.

https://forum.netgate.com/topic/184155/static-arp-in-dhcp-overwritten

I really wouldn't count on kea not being weird if your doing anything other than just serving IPs out of a pool..

molykule

@johnpoz
Thank you for the detailed reply and the links,

Gertjan

@johnpoz said in KEA DHCP - lacking features:

I really wouldn't count on kea not being weird if your doing anything other than just serving IPs out of a pool..

So can I deduct that I have a run of the mill networks so kea works fine for me ? ;)

JonathanLee

@Gertjan any network with a firewall is far from run of the mill ️ especially one running a new cutting edge kea dhcp server. Give yourself credit where credit is due.

omiwaaa

Is there a way to get back to ISC DHCP if I clicked to migrate to KEA? If not, then I will check if any OPTION can be set directly into files, I need it for WAPD.

SteveITS

@omiwaaa said in KEA DHCP - lacking features:

Is there a way to get back to ISC DHCP if I clicked to migrate to KEA?

On that same page you can change back.

omiwaaa

@SteveITS unfortunately I dismissed the banner and no other possible option found in the section. I'll workaround deploying another DHCP on another server while the module gets populated with more fields.

johnpoz

@omiwaaa this was just asked earlier today - you set it back in the same place you set it to kea..

vitko-core.ru

@johnpoz thank you for giving me the opportunity to choose and force me to specify my DHCP OPTIONS

CyberCow

@molykule said in KEA DHCP - lacking features:

Hi,
I have 2 different subnets LAN and OPT1. I have a laptop, which has static IP address defined in both subnets, for lan the ip is 192.168.2.20, and for opt1, the ip is 192.168.3.20.

I have removed the client identifier in both subnets. Is there any work around for such scenario or I am missing something,
I have posted it in separate in topic before, hoping if somebody else ran in the same issue, but haven't heard anything
thanks,

I got the same error as you, and in my case it seemed to be that i had the same mac-addresses entered in "MAC Deny" on 2 different vlan-interfaces.
Fired up a VM and did the same settings and got the same result.

when i deleted the mac-addresses from 1 vlan-interface kea-dhcp worked again.

in this situation in the config file "/usr/local/etc/kea/kea-dhcp4.conf" the class is indeed being defined 2 times.

i assume this is a bug, but if someone else could confirm...

johnpoz

@CyberCow said in KEA DHCP - lacking features:

i assume this is a bug, but if someone else could confirm...

You want to report/confirm a bug in a feature that is listed as not supported yet, in the preview release?