Possible Bug with KEA DHCP service adding MAC Addresses to MAC Control Deny list on 2 VLAN DHCP services
-
Hi Everyone,
I have TP-Link Mngd switches that are trunking VLAN's from 2 x pfSense in High Avail mode. HA mode is running perfectly also! The Netgate appliances are identical 6100MAX units.pfSense: I have 4 "LAN-side" VLAN's, each with a KEA DHCP service running; Mgmt, Office, IoT-Prod, IoT-Test
I want the switches to have a leased IPv4 in the Mgmt VLAN, but no other VLAN's. Both switches have grabbed an IPv4 from the DHCP pools in the other VLAN's. I want to deny this.
If I add the switch MAC addresses to a non-Mgmt VLAN DHCP service MAC Control "Deny" list, no issues, KEA DHCP service runs fine.
PROBLEM
As soon as a "copy/paste" the switch MAC addresses to a 2nd VLAN DHCP service MAC Control "Deny" list, KEA DHCP service immediately stops.
If I remove the pasted entries, KEA DHCP service immediately starts.
I have tested both full and partial MAC addresses. Any exact duplication of a MAC address added to 2 DHCP services MAC Control "Deny" list, KEA DHCP service immediately stops.
Can someone please test this and confirm if it occurs for a single pfSense appliance? If this isn't a single pfSense appliance issue, can a forum admin please move this to the High Avail section?
- pfSense version 24.03-RELEASE (amd64)
- Both Netgate 6100MAX's are on the same (current) firmware
- Patch package applied
- All current patches applied
