Client cannot get the ip adddress from static mapping

DHCP and DNS
Log in to reply
  • W

    Good day, I have an issue on pfSense 2.2.4 in DCHP Static Mappings.

    whenever i add static mapping from dhcp leases, i get this error:

    "For info, please visit https://www.isc.org/software/dhcp/
    Wrote 0 deleted host decls to leases file.
    Wrote 0 new dynamic host decls to leases file.
    Wrote 82 leases to leases file.
    Listening on BPF/re0/<re0_mac_add>/10.0.0.0/8
    Sending on BPF/re0/<re0_mac_add>/10.0.0.0/8
    Can't bind to dhcp address: Address already in use
    Please make sure there is no other dhcp server
    running and that there's no entry for dhcp or
    bootp in /etc/inetd.conf. Also make sure you
    are not running HP JetAdmin software, which
    includes a bootp server."

    newly added clients can't receive their new ip address

    any work arounds? i did reinstalling pfSense then restore the config but its still there.</re0_mac_add></re0_mac_add>

    0
  • M

    Well, are you running another DHCP server on  your network?
    Do you have any HP JetAdmin software which might be running a bootp server?
    Is the static entry you're putting in falling within a non-static DHCP range?
    How big is your DHCP range? Could it be so wide that it's coming across static addresses elsewhere on your network?

    0
  • W

    @muswellhillbilly:

    Well, are you running another DHCP server on  your network?
    Do you have any HP JetAdmin software which might be running a bootp server?
    Is the static entry you're putting in falling within a non-static DHCP range?
    How big is your DHCP range? Could it be so wide that it's coming across static addresses elsewhere on your network?

    another dhcp server? none.
    jetadmin? none
    static entry in dhcp range? pfsense doesnt allow to do that
    how big dhcp range? 10.10.1.1 to 10.10.2.254 (10.0.0.0/8)

    0
  • M

    Just out of interest, have you tried disabling DHCP on  your PFS and starting a client on your LAN to see if somehow another device may be doling out DHCP addresses?

    Have you also thought about making your internal network a little less large, maybe using a /16 netmask? Or are you really going to need to run over 16 million hosts on your LAN?

    What IP are you using for your firewalls LAN address?

    Lastly, can you post a complete screenshot of your DHCP settings?

    0
  • W

    @muswellhillbilly:

    Just out of interest, have you tried disabling DHCP on  your PFS and starting a client on your LAN to see if somehow another device may be doling out DHCP addresses?

    Have you also thought about making your internal network a little less large, maybe using a /16 netmask? Or are you really going to need to run over 16 million hosts on your LAN?

    What IP are you using for your firewalls LAN address?

    Lastly, can you post a complete screenshot of your DHCP settings?

    I really tried disabling DHCP and see if the client get an address, but none. I can see the DHCP logs if there's persistent "wrong network" but none.

    That's my next move also, making it less hosts to troubleshoot.

    10.0.0.1 - pfsense
    10.1.x.x- servers
    10.3.x.x-ip cams
    10.5.x.x-static mappings
    10.10.1.x to 10.10.2.x - DHCP range (but im using captive portal for device registration)
    10.20.x.x-VoIP


    0
  • M

    Ok, so do you have any packages installed on the firewall or have any other services which might be using the DHCP port? Do you have any DHCP service running on the OTP1 interface?

    0
  • W

    @muswellhillbilly:

    Ok, so do you have any packages installed on the firewall or have any other services which might be using the DHCP port? Do you have any DHCP service running on the OTP1 interface?

    Attached image shows packages installed.

    Only the LAN interface has the DHCP server. THE OPT1 has no DHCP server

    Sorry for late response to  this topic


    0
  • W

    Good day,

    I upgraded to 2.2.5 hoping for fix but still not working. I adjusted to 10.0.0.0/11 for less range.

    Any workarounds?

    0
  • W

    Its been a while, im testing this workaround.

    I should STOP then START the DHCP service to work.

    I wonder why RESTART service doesn't solve the problem.

    Anyways it is working now. Thanks to those who replied here.

    0
  • johnpoz
    LAYER 8 Global Moderator

    really a /11 – how many freaking devices do you have???  There is NO freaking reason you would want or need a /11 broadcast domain..  You have like 2 million machines??  And you want them all on the same broadcast domain??

    There was some thread recently where someone mentioned that large scopes use up more memory or something..  Really come on adjust your scope to a reasonable size..  To be honest I would never ever put more than a /23 on the same broadcast domain..

    If you want your different types of devices on different address schemes, then do that by putting them on their own vlan....  That way you can actually firewall between them...

    0
  • W

    really a /11 – how many freaking devices do you have???  There is NO freaking reason you would want or need a /11 broadcast domain..  You have like 2 million machines??  And you want them all on the same broadcast domain??

    that's problem here (in my workplace) the devices are added time to time. so i need to categorize them by 10.nn.x.xxx,
    im aware of that. in the future we will adjust that.

    There was some thread recently where someone mentioned that large scopes use up more memory or something..  Really come on adjust your scope to a reasonable size..  To be honest I would never ever put more than a /23 on the same broadcast domain..

    Luckilly i have no problems with the memory.
    If you want your different types of devices on different address schemes, then do that by putting them on their own vlan….  That way you can actually firewall between them...

    yes sir, that's the next phase. but this is the best thing we can do for now. thank you

    0
  • johnpoz
    LAYER 8 Global Moderator

    "so i need to categorize them by 10.nn.x.xxx,"

    How many machines do you have total?  Why can not vlan them now??  Once you determined that they should separate devices based upon function or location or dept, etc.. its time to segment your machine into networks/vlans not just different ip ranges in the same scope..

    0
  • W

    @johnpoz:

    "so i need to categorize them by 10.nn.x.xxx,"

    How many machines do you have total?  Why can not vlan them now??  Once you determined that they should separate devices based upon function or location or dept, etc.. its time to segment your machine into networks/vlans not just different ip ranges in the same scope..

    300 plus and counting. we're about to rearrange the network next year, we haven't receive the switches yet :D

    0

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy