Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    DHCP client on second WAN gateway not getting IP assigned

    Scheduled Pinned Locked Moved Routing and Multi WAN
    5 Posts 1 Posters 659 Views 1 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • F Offline
      forest
      last edited by forest

      I'm using a Netgate 2100 running 24.11-RELEASE. Primary WAN is working fine, gets DHCP-assigned IP and routes traffic correctly.

      I've set up a secondary WAN using a different provider by configuring LAN port 4 as a separate VLAN (4094) as OPT1, according to the instructions, then added a second gateway on that port and configured it to use DHCP. However, the second WAN port OPT1 stays in "PENDING" status and never gets a DHCP lease.

      I've tested the second WAN provider and it works fine. I can swap the two WAN providers cables between "WAN" and "OPT1" ports and then the main WAN port gets an IP assigned, but OPT1 does not. I've rebooted both modems, as well.

      So it's something misconfigured with OPT1 gateway (or the VLAN?), but I cannot identify what yet. I've gone through the instructions 3 times step by step with the same result.

      Do you have any suggestions what to try next? Thank you for your suggestions.

      1 Reply Last reply Reply Quote 0
      • F Offline
        forest
        last edited by forest

        Another clue, this is from the "General" log, and shows an attempt to get a DHCP lease on the OPT1 interface ("mvneta1.4094"):

        /interfaces.php: The command '/sbin/dhclient -c /var/etc/dhclient_opt1.conf -p /var/run/dhclient.mvneta1.4094.pid mvneta1.4094 > 
        /tmp/mvneta1.4094_output 2> 
        /tmp/mvneta1.4094_error_output' returned exit code '15', the output was ''
        
        1 Reply Last reply Reply Quote 0
        • F Offline
          forest
          last edited by forest

          The "exit 15" may be a fluke not really related. Most of what's in the log are DHCP discover attempts with no reply. Example:

          dhclient	31756	DHCPDISCOVER on mvneta1.4094 to 255.255.255.255 port 67 interval 10
          dhclient	31756	DHCPDISCOVER on mvneta1.4094 to 255.255.255.255 port 67 interval 5
          dhclient	31756	DHCPDISCOVER on mvneta1.4094 to 255.255.255.255 port 67 interval 2
          dhclient	31756	DHCPDISCOVER on mvneta1.4094 to 255.255.255.255 port 67 interval 1
          

          However, if I swap that WAN provider's cable to the main WAN port, it works fine there, so I don't think it's an upstream issue. Something in that LAN port 4 and/or VLAN config must be blocking traffic coming in. I looked at a packet capture and see the DHCP discover packets, and nothing coming back in.

          1 Reply Last reply Reply Quote 0
          • F Offline
            forest
            last edited by

            This post is deleted!
            1 Reply Last reply Reply Quote 0
            • F Offline
              forest
              last edited by forest

              Okay, this is resolved. As suspected, it was related to the configuration of the VLAN for the OPT1 port.

              For anyone up against the same issue, the solution is:

              1. follow the instructions for configuring switch ports with VLANs https://docs.netgate.com/pfsense/en/latest/solutions/netgate-2100/configuring-the-switch-ports.html
              2. set your VLAN to have members "4" (assuming you are using the 4th LAN port as your OPT1 for WAN2), and "5"
              3. this is the critical part: for the VLAN members 4 and 5, you must make "4" untagged and "5" tagged -- see screenshot.

              I believe this is because traffic from the VLAN must go to the switch (member 5), but traffic on port 4 (member 4) cannot be tagged since your secondary internet provider is not set up to handle VLAN traffic. I could be wrong here, and welcome any better explanation for this solution.

              vlan - screenshot.png

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.