Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Configuring Pfsense DHCP to work with Lync 2010 Phones (DHCP Option)

    Scheduled Pinned Locked Moved DHCP and DNS
    3 Posts 3 Posters 4.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      moh10ly
      last edited by

      Hello Everyone,

      I have a project where we have to get Lync Phones configured for Pin authentication which is provided by DHCP option from the Lync Server.
      for Windows DHCP, Windows has provided the instruction and script on how to do it and for Linux the below link seems to instruct how to do it as well.

      http://tohamey.blogspot.com/2011/10/configuring-linux-dhcp-to-work-with.html

      I would like to know if pfsense's DHCP is supporting this or not? and how to do it if anyone has any idea?

      Thanks

      Power is Knowledge.

      1 Reply Last reply Reply Quote 0
      • G
        Gabri.91
        last edited by

        You can add option 43 and 120 under "Additional BOOTP/DHCP Options" in pfSense DHCP Server

        1 Reply Last reply Reply Quote 0
        • H
          hausdrachen
          last edited by

          You need to add your Option 120 and 43 into the /etc/inc/services.inc file like discribed here http://tohamey.blogspot.de/2011/10/configuring-linux-dhcp-to-work-with.html

          Enable ssh support to your pfsense and conect to a shell.

          vi /etc/inc/services.inc

          Search for /* write dhcpd.conf */

          and then for $dhcpdconf = << <eod<br>between {$custoptions} and default-lease-time 7200;

          you can add your options for vendor class like

          […]
          {$custoptions}
          class "vendor-classes" {
          match option vendor-class-identifier;
          }
          option space MSUCClient;
          option MSUCClient.UCIdentifier code 1 = string;
          option MSUCClient.URLScheme code 2 = string;
          option MSUCClient.WebServerFqdn code 3 = string;
          option MSUCClient.WebServerPort code 4 = string;
          option MSUCClient.CertProvRelPath code 5 = string;
          option UCSipServer code 120 = string;
          subclass "vendor-classes" "MS-UC-Client" {
          vendor-option-space MSUCClient;
          option MSUCClient.UCIdentifier 4D:53:2D:55:43:2D:43:6C:69:65:6E:74;
          option MSUCClient.URLScheme 68:74:74:70:73;
          option MSUCClient.WebServerFqdn 70:6F:6F:6C:2E:63:6F:6E:74:6F:73:6F:2E:63:6F:6D;
          option MSUCClient.WebServerPort 34:34:33;
          option MSUCClient.CertProvRelPath 2F:43:65:72:74:50:72:6F:76:2F:43:65:72:74:50:72:6F:76:69:73:69:6F:6E:69:6E:67:53:65:72:76:69:63:65:2E:73:76:63;
          }
          default-lease-time 7200;
          […]

          Next step is to search for  /* is failover dns setup? */ in your /etc/inc/services.inc

          And then for option routers {$routers};

          between $dnscfg and EOD; you can add your UCSipServer

          […]
                option routers {$routers};
          $dnscfg
          option UCSipServer 00:0B:70:65:70:77:6D:7A:30:30:33:34:36:03:63:77:77:03:70:65:70:03:70:76:74:00;

          EOD;
          […]

          The empty line is mandatory, because of formating of the dhcpd.conf that will be created out of this.

          Now go to your DHCP konfiguration on your pfsense WebUI and save it like it is.
          Check on WebUI status->services if the dhcp server is up and running.

          Check on ssh shell the generated dhcp-server configuraion file with

          less /var/dhcpd/etc/dhcpd.conf

          Cheers to anybody need to make PinAuthentication work with Lync and PFSense ;-)

          BR</eod<br>

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.