]>
Commit | Line | Data |
---|---|---|
91da194e | 1 | Internet Systems Consortium DHCP Distribution |
397599cb TM |
2 | Version 4.4.0b1 |
3 | 09 January 2018 | |
4650dc25 | 4 | |
98311e4b | 5 | README FILE |
4650dc25 TL |
6 | |
7 | You should read this file carefully before trying to install or use | |
8 | the ISC DHCP Distribution. | |
9 | ||
10 | TABLE OF CONTENTS | |
11 | ||
12 | 1 WHERE TO FIND DOCUMENTATION | |
13 | 2 RELEASE STATUS | |
14 | 3 BUILDING THE DHCP DISTRIBUTION | |
986bf898 TL |
15 | 3.1 UNPACKING IT |
16 | 3.2 CONFIGURING IT | |
17 | 3.2.1 DYNAMIC DNS UPDATES | |
38793a26 | 18 | 3.2.2 LOCALLY DEFINED OPTIONS |
986bf898 | 19 | 3.3 BUILDING IT |
4650dc25 TL |
20 | 4 INSTALLING THE DHCP DISTRIBUTION |
21 | 5 USING THE DHCP DISTRIBUTION | |
da411127 TL |
22 | 5.1 FIREWALL RULES |
23 | 5.2 LINUX | |
24 | 5.2.1 IF_TR.H NOT FOUND | |
25 | 5.2.2 SO_ATTACH_FILTER UNDECLARED | |
26 | 5.2.3 PROTOCOL NOT CONFIGURED | |
27 | 5.2.4 BROADCAST | |
28 | 5.2.6 IP BOOTP AGENT | |
29 | 5.2.7 MULTIPLE INTERFACES | |
30 | 5.3 SCO | |
31 | 5.4 HP-UX | |
32 | 5.5 ULTRIX | |
33 | 5.6 FreeBSD | |
34 | 5.7 NeXTSTEP | |
35 | 5.8 SOLARIS | |
7cfeb916 | 36 | 5.8.1 Solaris 11 |
b89b8e16 SR |
37 | 5.8.2 Solaris 11 and ATF |
38 | 5.8.3 Other Solaris Items | |
236d3a99 DH |
39 | 5.9 AIX |
40 | 5.10 MacOS X | |
6913a589 | 41 | 5.11 ATF |
4650dc25 | 42 | 6 SUPPORT |
986bf898 | 43 | 6.1 HOW TO REPORT BUGS |
fef8c6f0 | 44 | 7 HISTORY |
4650dc25 TL |
45 | |
46 | WHERE TO FIND DOCUMENTATION | |
2d1b06e0 TL |
47 | |
48 | Documentation for this software includes this README file, the | |
49 | RELNOTES file, and the manual pages, which are in the server, common, | |
da411127 TL |
50 | client and relay subdirectories. The README file (this file) includes |
51 | late-breaking operational and system-specific information that you | |
52 | should read even if you don't want to read the manual pages, and that | |
53 | you should *certainly* read if you run into trouble. Internet | |
802fdea1 TM |
54 | standards relating to the DHCP protocol are listed in the References |
55 | document that is available in html, txt and xml formats in doc/ | |
da411127 TL |
56 | subdirectory. You will have the best luck reading the manual pages if |
57 | you build this software and then install it, although you can read | |
58 | them directly out of the distribution if you need to. | |
2d1b06e0 TL |
59 | |
60 | DHCP server documentation is in the dhcpd man page. Information about | |
61 | the DHCP server lease database is in the dhcpd.leases man page. | |
62 | Server configuration documentation is in the dhcpd.conf man page as | |
63 | well as the dhcp-options man page. A sample DHCP server | |
9ff4e0a2 SR |
64 | configuration is in the file server/dhcpd.conf.example. The source for |
65 | the dhcpd, dhcpd.leases and dhcpd.conf man pages is in the server/ sub- | |
4650dc25 TL |
66 | directory in the distribution. The source for the dhcp-options.5 |
67 | man page is in the common/ subdirectory. | |
2d1b06e0 TL |
68 | |
69 | DHCP Client documentation is in the dhclient man page. DHCP client | |
70 | configuration documentation is in the dhclient.conf man page and the | |
71 | dhcp-options man page. The DHCP client configuration script is | |
72 | documented in the dhclient-script man page. The format of the DHCP | |
73 | client lease database is documented in the dhclient.leases man page. | |
4650dc25 TL |
74 | The source for all these man pages is in the client/ subdirectory in |
75 | the distribution. In addition, the dhcp-options man page should be | |
76 | referred to for information about DHCP options. | |
2d1b06e0 | 77 | |
4650dc25 TL |
78 | DHCP relay agent documentation is in the dhcrelay man page, the source |
79 | for which is distributed in the relay/ subdirectory. | |
2d1b06e0 TL |
80 | |
81 | To read installed manual pages, use the man command. Type "man page" | |
4650dc25 TL |
82 | where page is the name of the manual page. This will only work if |
83 | you have installed the ISC DHCP distribution using the ``make install'' | |
84 | command (described later). | |
2d1b06e0 TL |
85 | |
86 | If you want to read manual pages that aren't installed, you can type | |
87 | ``nroff -man page |more'' where page is the filename of the | |
88 | unformatted manual page. The filename of an unformatted manual page | |
89 | is the name of the manual page, followed by '.', followed by some | |
90 | number - 5 for documentation about files, and 8 for documentation | |
4650dc25 TL |
91 | about programs. For example, to read the dhcp-options man page, |
92 | you would type ``nroff -man common/dhcp-options.5 |more'', assuming | |
93 | your current working directory is the top level directory of the ISC | |
94 | DHCP Distribution. | |
2d1b06e0 | 95 | |
e021c50c DH |
96 | Please note that the pathnames of files to which our manpages refer |
97 | will not be correct for your operating system until after you iterate | |
98 | 'make install' (so if you're reading a manpage out of the source | |
99 | directory, it may not have up-to-date information). | |
2d1b06e0 TL |
100 | |
101 | RELEASE STATUS | |
102 | ||
7d1a2ce8 | 103 | This is ISC DHCP 4.3.x The major theme for this release is "ipv6 uplift", |
32da1939 SR |
104 | in which we enhance the v6 code to support many of the features found |
105 | in the v4 code. These include: support for v6, support for on_commit, | |
106 | on_expiry and on_release in v6, support for accessing v6 relay options | |
107 | and better log messages for v6 addresses. Non v6 features include: | |
108 | support for the standard DDNS, better OMAPI class and sub-class support | |
109 | allowing for dynamic addition and removal of sub-classes, and support for | |
110 | DDNS without zone statements. | |
4650dc25 | 111 | |
fe5b0fdd DH |
112 | In this release, the DHCPv6 server should be fully functional on Linux, |
113 | Solaris, or any BSD. The DHCPv6 client should be similarly functional | |
114 | except on Solaris. | |
26833160 | 115 | |
fe5b0fdd DH |
116 | The DHCPv4 server, relay, and client, should be fully functional |
117 | on Linux, Solaris, any BSD, HPUX, SCO, NextSTEP, and Irix. | |
26833160 | 118 | |
da411127 TL |
119 | If you are running the DHCP distribution on a machine which is a |
120 | firewall, or if there is a firewall between your DHCP server(s) and | |
121 | DHCP clients, please read the section on firewalls which appears later | |
122 | in this document. | |
123 | ||
26833160 | 124 | If you wish to run the DHCP Distribution on Linux, please see the |
3dcbf508 | 125 | Linux-specific notes later in this document. If you wish to run on an |
26833160 TL |
126 | SCO release, please see the SCO-specific notes later in this document. |
127 | You particularly need to read these notes if you intend to support | |
802fdea1 TM |
128 | Windows 95 clients. If you are running HP-UX or Ultrix, please read the |
129 | notes for those operating systems below. If you are running NeXTSTEP, | |
130 | please see the notes on NeXTSTEP below. | |
26833160 | 131 | |
aa857ee0 TL |
132 | If you start dhcpd and get a message, "no free bpf", that means you |
133 | need to configure the Berkeley Packet Filter into your operating | |
134 | system kernel. On NetBSD, FreeBSD and BSD/os, type ``man bpf'' for | |
135 | information. On Digital Unix, type ``man pfilt''. | |
136 | ||
a8f3586f | 137 | |
26833160 TL |
138 | BUILDING THE DHCP DISTRIBUTION |
139 | ||
986bf898 TL |
140 | UNPACKING IT |
141 | ||
1409f290 TL |
142 | To build the DHCP Distribution, unpack the compressed tar file using |
143 | the tar utility and the gzip command - type something like: | |
144 | ||
397599cb TM |
145 | gunzip dhcp-4.4.0b1.tar.gz |
146 | tar xvf dhcp-4.4.0b1.tar | |
98bf1607 | 147 | |
986bf898 TL |
148 | CONFIGURING IT |
149 | ||
397599cb | 150 | Now, cd to the dhcp-4.4.0b1 subdirectory that you've just created and |
6b911c86 | 151 | configure the source tree by typing: |
1409f290 | 152 | |
98311e4b | 153 | ./configure |
1409f290 TL |
154 | |
155 | If the configure utility can figure out what sort of system you're | |
156 | running on, it will create a custom Makefile for you for that | |
157 | system; otherwise, it will complain. If it can't figure out what | |
158 | system you are using, that system is not supported - you are on | |
159 | your own. | |
160 | ||
dbd65517 SR |
161 | Several options may be enabled or disabled via the configure command. |
162 | You can get a list of these by typing: | |
163 | ||
164 | ./configure --help | |
165 | ||
007ba82a FD |
166 | If you want to use dynamic shared libraries automake, autoconf |
167 | (aka GNU autotools) and libtool must be available. The DHCP | |
168 | distribution provides 3 configure.ac* files: the -lt version | |
169 | has no libtool support and was copied to the configure.ac | |
170 | standard file in the distribution. To enable libtool support | |
171 | you should perform these steps: | |
172 | ||
173 | cp configure.ac+lt configure.ac | |
174 | autoreconf -i | |
175 | ||
176 | after you can use the regenerated configure as usual | |
177 | (with libtool support (--enable-libtool) on by default): | |
178 | ||
179 | ./configure | |
180 | ||
181 | For compatibility (and people who don't read this documentation) | |
182 | the --enable-libtool configuration file is supported even by | |
183 | the distributed configure (and off by default). The previous | |
184 | steps are performed and the regenerated configure called with | |
185 | almost the same parameters (this "almost" makes the use of | |
186 | this feature not recommended). | |
187 | ||
838cc5ea FD |
188 | Note you can't go back from with libtool support to without libtool |
189 | support by restoring configure.ac and rerun autoreconf. If you | |
190 | want or need to restore the without libtool support state the | |
191 | required way is to simply restore the whole distribution. | |
192 | ||
986bf898 TL |
193 | DYNAMIC DNS UPDATES |
194 | ||
da411127 | 195 | A fully-featured implementation of dynamic DNS updates is included in |
98bf1607 | 196 | this release. It uses libraries from BIND and, to avoid issues with |
95bba8b6 SR |
197 | different versions, includes the necessary BIND version. The appropriate |
198 | BIND libraries will be compiled and installed in the bind subdirectory | |
199 | as part of the make step. In order to build the necessary libraries you | |
200 | will need to have "gmake" available on your build system. | |
201 | ||
986bf898 | 202 | |
6b3d9544 TL |
203 | There is documentation for the DDNS support in the dhcpd.conf manual |
204 | page - see the beginning of this document for information on finding | |
205 | manual pages. | |
986bf898 | 206 | |
38793a26 TL |
207 | LOCALLY DEFINED OPTIONS |
208 | ||
209 | In previous versions of the DHCP server there was a mechanism whereby | |
210 | options that were not known by the server could be configured using | |
211 | a name made up of the option code number and an identifier: | |
212 | "option-nnn" This is no longer supported, because it is not future- | |
213 | proof. Instead, if you want to use an option that the server doesn't | |
214 | know about, you must explicitly define it using the method described | |
215 | in the dhcp-options man page under the DEFINING NEW OPTIONS heading. | |
216 | ||
986bf898 TL |
217 | BUILDING IT |
218 | ||
1409f290 TL |
219 | Once you've run configure, just type ``make'', and after a while |
220 | you should have a dhcp server. If you get compile errors on one | |
221 | of the supported systems mentioned earlier, please let us know. | |
222 | If you get warnings, it's not likely to be a problem - the DHCP | |
223 | server compiles completely warning-free on as many architectures | |
224 | as we can manage, but there are a few for which this is difficult. | |
225 | If you get errors on a system not mentioned above, you will need | |
226 | to do some programming or debugging on your own to get the DHCP | |
227 | Distribution working. | |
26833160 | 228 | |
b4a10c76 FD |
229 | If you cross compile you have to follow the instructions from |
230 | the BIND README, in particular you must set the BUILD_CC | |
231 | environment variable. | |
232 | ||
4650dc25 TL |
233 | INSTALLING THE DHCP DISTRIBUTION |
234 | ||
68c039d3 TL |
235 | Once you have successfully gotten the DHCP Distribution to build, you |
236 | can install it by typing ``make install''. If you already have an old | |
237 | version of the DHCP Distribution installed, you may want to save it | |
238 | before typing ``make install''. | |
3dcbf508 | 239 | |
4650dc25 TL |
240 | USING THE DHCP DISTRIBUTION |
241 | ||
da411127 TL |
242 | FIREWALL RULES |
243 | ||
244 | If you are running the DHCP server or client on a computer that's also | |
245 | acting as a firewall, you must be sure to allow DHCP packets through | |
246 | the firewall. In particular, your firewall rules _must_ allow packets | |
247 | from IP address 0.0.0.0 to IP address 255.255.255.255 from UDP port 68 | |
248 | to UDP port 67 through. They must also allow packets from your local | |
249 | firewall's IP address and UDP port 67 through to any address your DHCP | |
250 | server might serve on UDP port 68. Finally, packets from relay agents | |
251 | on port 67 to the DHCP server on port 67, and vice versa, must be | |
252 | permitted. | |
253 | ||
254 | We have noticed that on some systems where we are using a packet | |
255 | filter, if you set up a firewall that blocks UDP port 67 and 68 | |
256 | entirely, packets sent through the packet filter will not be blocked. | |
257 | However, unicast packets will be blocked. This can result in strange | |
258 | behaviour, particularly on DHCP clients, where the initial packet | |
259 | exchange is broadcast, but renewals are unicast - the client will | |
260 | appear to be unable to renew until it starts broadcasting its | |
261 | renewals, and then suddenly it'll work. The fix is to fix the | |
262 | firewall rules as described above. | |
263 | ||
264 | PARTIAL SERVERS | |
265 | ||
266 | If you have a server that is connected to two networks, and you only | |
267 | want to provide DHCP service on one of those networks (e.g., you are | |
268 | using a cable modem and have set up a NAT router), if you don't write | |
269 | any subnet declaration for the network you aren't supporting, the DHCP | |
270 | server will ignore input on that network interface if it can. If it | |
271 | can't, it will refuse to run - some operating systems do not have the | |
272 | capability of supporting DHCP on machines with more than one | |
273 | interface, and ironically this is the case even if you don't want to | |
274 | provide DHCP service on one of those interfaces. | |
275 | ||
26833160 TL |
276 | LINUX |
277 | ||
6da19769 TL |
278 | There are three big LINUX issues: the all-ones broadcast address, |
279 | Linux 2.1 ip_bootp_agent enabling, and operations with more than one | |
3dcbf508 TL |
280 | network interface. There are also two potential compilation/runtime |
281 | problems for Linux 2.1/2.2: the "SO_ATTACH_FILTER undeclared" problem | |
282 | and the "protocol not configured" problem. | |
283 | ||
3dcbf508 TL |
284 | LINUX: PROTOCOL NOT CONFIGURED |
285 | ||
e021c50c | 286 | If you get the following message, it's because your kernel doesn't |
713a2956 | 287 | have the Linux packetfilter or raw packet socket configured: |
3dcbf508 | 288 | |
c87fcde1 TL |
289 | Make sure CONFIG_PACKET (Packet socket) and CONFIG_FILTER (Socket |
290 | Filtering) are enabled in your kernel configuration | |
291 | ||
292 | If this happens, you need to configure your Linux kernel to support | |
e021c50c DH |
293 | Socket Filtering and the Packet socket, or to select a kernel provided |
294 | by your Linux distribution that has these enabled (virtually all modern | |
295 | ones do by default). | |
2a1ebeee | 296 | |
3dcbf508 | 297 | LINUX: BROADCAST |
2a1ebeee | 298 | |
da411127 TL |
299 | If you are running a recent version of Linux, this won't be a problem, |
300 | but on older versions of Linux (kernel versions prior to 2.2), there | |
301 | is a potential problem with the broadcast address being sent | |
302 | incorrectly. | |
303 | ||
26833160 TL |
304 | In order for dhcpd to work correctly with picky DHCP clients (e.g., |
305 | Windows 95), it must be able to send packets with an IP destination | |
4650dc25 TL |
306 | address of 255.255.255.255. Unfortunately, Linux changes an IP |
307 | destination of 255.255.255.255 into the local subnet broadcast address | |
da411127 TL |
308 | (here, that's 192.5.5.223). |
309 | ||
310 | This isn't generally a problem on Linux 2.2 and later kernels, since | |
311 | we completely bypass the Linux IP stack, but on old versions of Linux | |
312 | 2.1 and all versions of Linux prior to 2.1, it is a problem - pickier | |
313 | DHCP clients connected to the same network as the ISC DHCP server or | |
314 | ISC relay agent will not see messages from the DHCP server. It *is* | |
315 | possible to run into trouble with this on Linux 2.2 and later if you | |
80778e94 | 316 | are running a version of the DHCP server that was compiled on a Linux |
da411127 | 317 | 2.0 system, though. |
7751e60d | 318 | |
26833160 TL |
319 | It is possible to work around this problem on some versions of Linux |
320 | by creating a host route from your network interface address to | |
321 | 255.255.255.255. The command you need to use to do this on Linux | |
322 | varies from version to version. The easiest version is: | |
7751e60d | 323 | |
26833160 | 324 | route add -host 255.255.255.255 dev eth0 |
7751e60d | 325 | |
26833160 TL |
326 | On some older Linux systems, you will get an error if you try to do |
327 | this. On those systems, try adding the following entry to your | |
328 | /etc/hosts file: | |
7751e60d | 329 | |
26833160 | 330 | 255.255.255.255 all-ones |
7751e60d | 331 | |
26833160 | 332 | Then, try: |
7751e60d | 333 | |
26833160 | 334 | route add -host all-ones dev eth0 |
7751e60d | 335 | |
26833160 | 336 | Another route that has worked for some users is: |
7751e60d | 337 | |
26833160 | 338 | route add -net 255.255.255.0 dev eth0 |
471fe68c | 339 | |
26833160 TL |
340 | If you are not using eth0 as your network interface, you should |
341 | specify the network interface you *are* using in your route command. | |
a8b53b42 | 342 | |
3dcbf508 | 343 | LINUX: IP BOOTP AGENT |
6da19769 TL |
344 | |
345 | Some versions of the Linux 2.1 kernel apparently prevent dhcpd from | |
346 | working unless you enable it by doing the following: | |
347 | ||
348 | echo 1 >/proc/sys/net/ipv4/ip_bootp_agent | |
349 | ||
350 | ||
3dcbf508 | 351 | LINUX: MULTIPLE INTERFACES |
2a1ebeee | 352 | |
4650dc25 TL |
353 | Very old versions of the Linux kernel do not provide a networking API |
354 | that allows dhcpd to operate correctly if the system has more than one | |
355 | broadcast network interface. However, Linux 2.0 kernels with version | |
356 | numbers greater than or equal to 2.0.31 add an API feature: the | |
357 | SO_BINDTODEVICE socket option. If SO_BINDTODEVICE is present, it is | |
358 | possible for dhcpd to operate on Linux with more than one network | |
cd977bed | 359 | interface. In order to take advantage of this, you must be running a |
3dcbf508 TL |
360 | 2.0.31 or greater kernel, and you must have 2.0.31 or later system |
361 | headers installed *before* you build the DHCP Distribution. | |
2a1ebeee | 362 | |
cd977bed TL |
363 | We have heard reports that you must still add routes to 255.255.255.255 |
364 | in order for the all-ones broadcast to work, even on 2.0.31 kernels. | |
365 | In fact, you now need to add a route for each interface. Hopefully | |
366 | the Linux kernel gurus will get this straight eventually. | |
367 | ||
4650dc25 TL |
368 | Linux 2.1 and later kernels do not use SO_BINDTODEVICE or require the |
369 | broadcast address hack, but do support multiple interfaces, using the | |
370 | Linux Packet Filter. | |
371 | ||
09c6b1cf PS |
372 | LINUX: OpenWrt |
373 | ||
113e193f PS |
374 | DHCP 4.1 has been tested on OpenWrt 7.09 and 8.09. In keeping with |
375 | standard practice, client/scripts now includes a dhclient-script file | |
376 | for OpenWrt. However, this is not sufficient by itself to run dhcp on | |
377 | OpenWrt; a full OpenWrt package for DHCP is available at | |
378 | ftp://ftp.isc.org/isc/dhcp/dhcp-4.1.0-openwrt.tar.gz | |
09c6b1cf | 379 | |
88cd8aca DH |
380 | LINUX: 802.1q VLAN INTERFACES |
381 | ||
382 | If you're using 802.1q vlan interfaces on Linux, it is necessary to | |
383 | vconfig the subinterface(s) to rewrite the 802.1q information out of | |
384 | packets received by the dhcpd daemon via LPF: | |
385 | ||
386 | vconfig set_flag eth1.523 1 1 | |
387 | ||
388 | Note that this may affect the performance of your system, since the | |
389 | Linux kernel must rewrite packets received via this interface. For | |
390 | more information, consult the vconfig man pages. | |
391 | ||
26833160 | 392 | SCO |
a8b53b42 | 393 | |
41e45067 DH |
394 | ISC DHCP will now work correctly on newer versions of SCO out of the |
395 | box (tested on OpenServer 5.05b, assumed to work on UnixWare 7). | |
a8b53b42 | 396 | |
45d545f0 | 397 | Older versions of SCO have the same problem as Linux (described earlier). |
41e45067 DH |
398 | The thing is, SCO *really* doesn't want to let you add a host route to |
399 | the all-ones broadcast address. | |
400 | ||
401 | You can try the following: | |
fcebfc39 TL |
402 | |
403 | ifconfig net0 xxx.xxx.xxx.xxx netmask 0xNNNNNNNN broadcast 255.255.255.255 | |
404 | ||
405 | If this doesn't work, you can also try the following strange hack: | |
406 | ||
407 | ifconfig net0 alias 10.1.1.1 netmask 8.0.0.0 | |
a8b53b42 | 408 | |
26833160 TL |
409 | Apparently this works because of an interaction between SCO's support |
410 | for network classes and the weird netmask. The 10.* network is just a | |
411 | dummy that can generally be assumed to be safe. Don't ask why this | |
41e45067 | 412 | works. Just try it. If it works for you, great. |
a8b53b42 | 413 | |
26833160 TL |
414 | HP-UX |
415 | ||
416 | HP-UX has the same problem with the all-ones broadcast address that | |
aa857ee0 TL |
417 | SCO and Linux have. One user reported that adding the following to |
418 | /etc/rc.config.d/netconf helped (you may have to modify this to suit | |
419 | your local configuration): | |
420 | ||
421 | INTERFACE_NAME[0]=lan0 | |
422 | IP_ADDRESS[0]=1.1.1.1 | |
423 | SUBNET_MASK[0]=255.255.255.0 | |
424 | BROADCAST_ADDRESS[0]="255.255.255.255" | |
425 | LANCONFIG_ARGS[0]="ether" | |
426 | DHCP_ENABLE[0]=0 | |
26833160 TL |
427 | |
428 | ULTRIX | |
429 | ||
430 | Now that we have Ultrix packet filter support, the DHCP Distribution | |
431 | on Ultrix should be pretty trouble-free. However, one thing you do | |
432 | need to be aware of is that it now requires that the pfilt device be | |
433 | configured into your kernel and present in /dev. If you type ``man | |
434 | packetfilter'', you will get some information on how to configure your | |
435 | kernel for the packet filter (if it isn't already) and how to make an | |
436 | entry for it in /dev. | |
437 | ||
438 | FreeBSD | |
439 | ||
440 | Versions of FreeBSD prior to 2.2 have a bug in BPF support in that the | |
441 | ethernet driver swaps the ethertype field in the ethernet header | |
442 | downstream from BPF, which corrupts the output packet. If you are | |
443 | running a version of FreeBSD prior to 2.2, and you find that dhcpd | |
444 | can't communicate with its clients, you should #define BROKEN_FREEBSD_BPF | |
445 | in site.h and recompile. | |
a8b53b42 | 446 | |
98311e4b DH |
447 | Modern versions of FreeBSD include the ISC DHCP 3.0 client as part of |
448 | the base system, and the full distribution (for the DHCP server and | |
449 | relay agent) is available from the Ports Collection in | |
450 | /usr/ports/net/isc-dhcp3, or as a package on FreeBSD installation | |
451 | CDROMs. | |
452 | ||
adbef119 | 453 | NeXTSTEP |
a8f3586f TL |
454 | |
455 | The NeXTSTEP support uses the NeXTSTEP Berkeley Packet Filter | |
cd977bed TL |
456 | extension, which is not included in the base NextStep system. You |
457 | must install this extension in order to get dhcpd or dhclient to work. | |
a8f3586f | 458 | |
3dcbf508 TL |
459 | SOLARIS |
460 | ||
e950a7be SR |
461 | There are two known issues seen when compiling using the Sun compiler. |
462 | ||
463 | The first is that older Sun compilers generate an error on some of | |
464 | our uses of the flexible array option. Newer versions only generate | |
465 | a warning, which can be safely ignored. If you run into this error | |
466 | ("type of struct member "buf" can not be derived from structure with | |
7cfeb916 SR |
467 | flexible array member"), upgrade your tools to Oracle Solaris Studio |
468 | (previously Sun Studio) 12 or something newer. | |
e950a7be SR |
469 | |
470 | The second is the interaction between the configure script and the | |
471 | makefiles for the Bind libraries. Currently we don't pass all | |
472 | environment variables between the DHCP configure and the Bind configure. | |
473 | ||
474 | If you attempt to specify the compiler you wish to use like this: | |
475 | ||
476 | CC=/opt/SUNWspro/bin/cc ./configure | |
477 | ||
478 | "make" may not build the Bind libraries with that compiler. | |
479 | ||
480 | In order to use the same compiler for Bind and DHCP we suggest the | |
481 | following commands: | |
482 | ||
483 | CC=/opt/SUNWspro/bin/cc ./configure | |
484 | CC=/opt/SUNWspro/bin/cc make | |
485 | ||
7cfeb916 SR |
486 | Solaris 11 |
487 | ||
488 | We have integrated a patch from Oracle to use sockets instead of | |
489 | DLPI on Solaris 11. This functionality was written for use with | |
490 | Solaris Studio 12.2 and requires the system/header package. | |
491 | ||
492 | By default this code is disabled in order to minimize disruptions | |
493 | for current users. In order to enable this code you will need to | |
494 | enable both USE_SOCKETS and USE_V4_PKTINFO as part of the | |
495 | configuration step. The command line would be something like: | |
496 | ||
497 | ./configure --enable-use-sockets --enable-ipv4-pktinfo | |
498 | ||
b89b8e16 SR |
499 | Solaris 11 and ATF |
500 | ||
501 | We have reports that ATF 0.15 and 0.16 do not build on Solaris 11. The | |
502 | following changes to the ATF source code appear to fix this issue: | |
503 | ||
504 | diff -ru atf-0.15/atf-c/tp_test.c atf-0.15-patched/atf-c/tp_test.c | |
505 | --- atf-0.15/atf-c/tp_test.c 2011-12-06 06:31:11.000000000 +0100 | |
506 | +++ atf-0.15-patched/atf-c/tp_test.c 2012-06-19 15:54:57.000000000 +0200 | |
507 | @@ -28,6 +28,7 @@ | |
508 | */ | |
509 | ||
510 | #include <string.h> | |
511 | +#include <stdio.h> | |
512 | #include <unistd.h> | |
513 | ||
514 | #include <atf-c.h> | |
515 | ||
516 | diff -ru atf-0.15/atf-run/requirements.cpp atf-0.15-patched/atf-run/requirements.cpp | |
517 | --- atf-0.15/atf-run/requirements.cpp 2012-01-13 20:44:25.000000000 +0100 | |
518 | +++ atf-0.15-patched/atf-run/requirements.cpp 2012-06-19 15:41:51.000000000 +0200 | |
519 | @@ -29,7 +29,7 @@ | |
520 | ||
521 | extern "C" { | |
522 | #include <sys/param.h> | |
523 | -#include <sys/sysctl.h> | |
524 | +//#include <sys/sysctl.h> | |
525 | } | |
526 | ||
527 | #include <cerrno> | |
528 | ||
7cfeb916 SR |
529 | Other Solaris Items |
530 | ||
ce53cc84 TL |
531 | One problem which has been observed and is not fixed in this |
532 | patchlevel has to do with using DLPI on Solaris machines. The symptom | |
533 | of this problem is that the DHCP server never receives any requests. | |
35eb3023 TL |
534 | This has been observed with Solaris 2.6 and Solaris 7 on Intel x86 |
535 | systems, although it may occur with other systems as well. If you | |
536 | encounter this symptom, and you are running the DHCP server on a | |
537 | machine with a single broadcast network interface, you may wish to | |
538 | edit the includes/site.h file and uncomment the #define USE_SOCKETS | |
88cd8aca DH |
539 | line. Then type ``make clean; make''. As an alternative workaround, |
540 | it has been reported that running 'snoop' will cause the dhcp server | |
541 | to start receiving packets. So the practice reported to us is to run | |
542 | snoop at dhcpd startup time, with arguments to cause it to receive one | |
543 | packet and exit. | |
544 | ||
545 | snoop -c 1 udp port 67 > /dev/null & | |
ce53cc84 TL |
546 | |
547 | The DHCP client on Solaris will only work with DLPI. If you run it | |
548 | and it just keeps saying it's sending DHCPREQUEST packets, but never | |
549 | gets a response, you may be having DLPI trouble as described above. | |
88cd8aca DH |
550 | If so, we have no solution to offer at this time, aside from the above |
551 | workaround which should also work here. Also, because Solaris requires | |
552 | you to "plumb" an interface before it can be detected by the DHCP client, | |
553 | you must either specify the name(s) of the interface(s) you want to | |
554 | configure on the command line, or must plumb the interfaces prior to | |
555 | invoking the DHCP client. This can be done with ``ifconfig iface plumb'', | |
556 | where iface is the name of the interface (e.g., ``ifconfig hme0 plumb''). | |
ce53cc84 TL |
557 | |
558 | It should be noted that Solaris versions from 2.6 onward include a | |
559 | DHCP client that you can run with ``/sbin/ifconfig iface dhcp start'' | |
786b0930 DH |
560 | rather than using the ISC DHCP client, including DHCPv6. Consequently, |
561 | we don't believe there is a need for the client to run on Solaris, and | |
562 | have not engineered the needed DHCPv6 modifications for the dhclient-script. | |
563 | If you feel this is in error, or have a need, please contact us. | |
3dcbf508 | 564 | |
98311e4b DH |
565 | AIX |
566 | ||
567 | The AIX support uses the BSD socket API, which cannot differentiate on | |
568 | which network interface a broadcast packet was received; thus the DHCP | |
569 | server and relay will work only on a single interface. (They do work | |
570 | on multi-interface machines if configured to listen on only one of the | |
571 | interfaces.) | |
572 | ||
80778e94 | 573 | We have reports of Windows XP clients having difficulty retrieving |
fc06ee4f SR |
574 | addresses from a server running on an AIX machine. This issue |
575 | was traced to the client requiring messages be sent to the all ones | |
576 | broadcast address (255.255.255.255) while the AIX server was sending | |
577 | to 192.168.0.255. | |
578 | ||
579 | You may be able to solve this by including a relay between the client | |
580 | and server with the relay configured to use a broadcast of all-ones. | |
581 | ||
582 | A second option that worked for AIX 5.1 but doesn't seem to work for | |
583 | AIX 5.3 was to: | |
584 | create a host file entry for all-ones (255.255.255.255) | |
585 | and then add a route: | |
586 | route add -host all-ones -interface <local-ip-address> | |
587 | ||
98311e4b DH |
588 | The ISC DHCP distribution does not include a dhclient-script for AIX-- |
589 | AIX comes with a DHCP client. Contribution of a working dhclient-script | |
590 | for AIX would be welcome. | |
591 | ||
fc06ee4f | 592 | |
236d3a99 DH |
593 | MacOS X |
594 | ||
595 | The MacOS X system uses a TCP/IP stack derived from FreeBSD with a | |
596 | user-friendly interface named the System Configuration Framework. | |
597 | As it includes a builtin DHCPv4 client (you are better just using that), | |
598 | this text is only about the DHCPv6 client (``dhclient -6 ...''). The DNS | |
599 | configuration (domain search list and name servers' addresses) is managed | |
600 | by a System Configuration agent, not by /etc/resolv.conf (which is a link | |
601 | to /var/run/resolv.conf, which itself only reflects the internal state; | |
394c505d | 602 | the System Configuration framework's Dynamic Store). |
236d3a99 | 603 | |
394c505d SR |
604 | This means that modifying resolv.conf directly doesn't have the |
605 | intended effect, instead the macos script sample creates its own | |
606 | resolv.conf.dhclient6 in /var/run, and inserts the contents of this | |
607 | file into the Dynamic Store. | |
608 | ||
609 | When updating the address configuration the System Configuration | |
610 | framework expects the prefix and a default router along with the | |
611 | configured address. As this extra information is not available via | |
612 | the DHCPv6 protocol the System Configuration framework isn't usable | |
613 | for address configuration, instead ifconfig is used directly. | |
236d3a99 DH |
614 | |
615 | Note the Dynamic Store (from which /var/run/resolv.conf is built) is | |
394c505d SR |
616 | recomputed from scratch when the current location/set is changed. |
617 | Running the dhclient-script reinstalls the resolv.conf.dhclient6 | |
618 | configuration. | |
236d3a99 | 619 | |
6913a589 FD |
620 | |
621 | ATF | |
622 | ||
623 | Please see the file DHCP/doc/devel/atf.dox for a description of building | |
624 | and using these tools. | |
625 | ||
626 | The optional unit tests use ATF (Automated Testing Framework) including | |
627 | the atf-run and atf-report tools. ATF deprecated these tools in | |
628 | version 0.19 and removed these tools from its sources in version 0.20, | |
629 | requiring you to get an older version, use Kyua with an ATF compatibility | |
630 | package or use the version included in the Bind sources. | |
631 | ||
f76ebbfd TL |
632 | SUPPORT |
633 | ||
98311e4b DH |
634 | The Internet Systems Consortium DHCP server is developed and distributed |
635 | by ISC in the public trust, thanks to the generous donations of its | |
e021c50c | 636 | sponsors. ISC now also offers commercial quality support contracts for |
98311e4b DH |
637 | ISC DHCP, more information about ISC Support Contracts can be found at |
638 | the following URL: | |
639 | ||
2c85ac9b | 640 | https://www.isc.org/services/support/ |
98311e4b | 641 | |
e021c50c DH |
642 | Please understand that we may not respond to support inquiries unless |
643 | you have a support contract. ISC will continue its practice of always | |
644 | responding to critical items that effect the entire community, and | |
645 | responding to all other requests for support upon ISC's mailing lists | |
646 | on a best-effort basis. | |
98311e4b DH |
647 | |
648 | However, ISC DHCP has attracted a fairly sizable following on the | |
45d545f0 | 649 | Internet, which means that there are a lot of knowledgeable users who |
e021c50c DH |
650 | may be able to help you if you get stuck. These people generally |
651 | read the dhcp-users@isc.org mailing list. Be sure to provide as much | |
652 | detail in your query as possible. | |
0cd69353 | 653 | |
e021c50c DH |
654 | If you are going to use ISC DHCP, you should probably subscribe to |
655 | the dhcp-users or dhcp-announce mailing lists. | |
da411127 | 656 | |
98311e4b DH |
657 | WHERE TO SEND FEATURE REQUESTS: We like to hear your feedback. We may |
658 | not respond to it all the time, but we do read it. If ISC DHCP doesn't | |
659 | work well for you, or you have an idea that would improve it for your | |
660 | use, please send your suggestion to dhcp-suggest@isc.org. This is also | |
661 | an excellent place to send patches that add new features. | |
662 | ||
e021ce5c TL |
663 | WHERE TO REPORT BUGS: If you want the act of sending in a bug report |
664 | to result in you getting help in the form of a fixed piece of | |
665 | software, you are asking for help. Your bug report is helpful to us, | |
666 | but fundamentally you are making a support request, so please use the | |
1ad180b1 TL |
667 | addresses described in the previous paragraphs. If you are _sure_ that |
668 | your problem is a bug, and not user error, or if your bug report | |
e021c50c DH |
669 | includes a patch, you can send it to our ticketing system at |
670 | dhcp-bugs@isc.org. If you have not received a notice that the ticket | |
671 | has been resolved, then we're still working on it. | |
e021ce5c | 672 | |
da411127 TL |
673 | PLEASE DO NOT REPORT BUGS IN OLD SOFTWARE RELEASES! Fetch the latest |
674 | release and see if the bug is still in that version of the software, | |
802fdea1 TM |
675 | and if it is still present, _then_ report it. ISC release versions |
676 | always have three numbers, for example: 1.2.3. The 'major release' is | |
677 | 1 here, the 'minor release' is 2, and the 'maintenance release' is 3. | |
678 | ISC will accept bug reports against the most recent two major.minor | |
e021c50c DH |
679 | releases: for example, 1.0.0 and 0.9.0, but not 0.8.* or prior. |
680 | ||
681 | PLEASE take a moment to determine where the ISC DHCP distribution | |
682 | that you're using came from. ISC DHCP is sometimes heavily modified | |
683 | by integrators in various operating systems - it's not that we | |
684 | feel that our software is perfect and incapable of having bugs, but | |
685 | rather that it is very frustrating to find out after many days trying | |
686 | to help someone that the sources you're looking at aren't what they're | |
687 | running. When in doubt, please retrieve the source distribution from | |
688 | ISC's web page and install it. | |
0cd69353 | 689 | |
e021ce5c | 690 | HOW TO REPORT BUGS OR REQUEST HELP |
4650dc25 | 691 | |
da411127 TL |
692 | When you report bugs or ask for help, please provide us complete |
693 | information. A list of information we need follows. Please read it | |
694 | carefully, and put all the information you can into your initial bug | |
e021c50c DH |
695 | report. This will save us a great deal of time and more informative |
696 | bug reports are more likely to get handled more quickly overall. | |
0cd69353 | 697 | |
1ad180b1 | 698 | 1. The specific operating system name and version of the |
adbef119 | 699 | machine on which the DHCP server or client is running. |
1ad180b1 | 700 | 2. The specific operating system name and version of the |
adbef119 DH |
701 | machine on which the client is running, if you are having |
702 | trouble getting a client working with the server. | |
1ad180b1 | 703 | 3. If you're running Linux, the version number we care about is |
adbef119 DH |
704 | the kernel version and maybe the library version, not the |
705 | distribution version - e.g., while we don't mind knowing | |
706 | that you're running Redhat version mumble.foo, we must know | |
707 | what kernel version you're running, and it helps if you can | |
708 | tell us what version of the C library you're running, | |
709 | although if you don't know that off the top of your head it | |
710 | may be hard for you to figure it out, so don't go crazy | |
711 | trying. | |
1ad180b1 | 712 | 4. The specific version of the DHCP distribution you're |
adbef119 | 713 | running, as reported by dhcpd -t. |
1ad180b1 | 714 | 5. Please explain the problem carefully, thinking through what |
adbef119 DH |
715 | you're saying to ensure that you don't assume we know |
716 | something about your situation that we don't know. | |
e021c50c DH |
717 | 6. Include your dhcpd.conf and dhcpd.leases file as MIME attachments |
718 | if they're not over 100 kilobytes in size each. If they are | |
713a2956 | 719 | this large, please make them available to us, e.g., via a hidden |
e021c50c DH |
720 | http:// URL or FTP site. If you're not comfortable releasing |
721 | this information due to sensitive contents, you may encrypt | |
722 | the file to our release signing key, available on our website. | |
1ad180b1 | 723 | 7. Include a log of your server or client running until it |
adbef119 DH |
724 | encounters the problem - for example, if you are having |
725 | trouble getting some client to get an address, restart the | |
726 | server with the -d flag and then restart the client, and | |
727 | send us what the server prints. Likewise, with the client, | |
728 | include the output of the client as it fails to get an | |
729 | address or otherwise does the wrong thing. Do not leave | |
730 | out parts of the output that you think aren't interesting. | |
1ad180b1 | 731 | 8. If the client or server is dumping core, please run the |
adbef119 DH |
732 | debugger and get a stack trace, and include that in your |
733 | bug report. For example, if your debugger is gdb, do the | |
734 | following: | |
0cd69353 TL |
735 | |
736 | gdb dhcpd dhcpd.core | |
737 | (gdb) where | |
738 | [...] | |
739 | (gdb) quit | |
740 | ||
741 | This assumes that it's the dhcp server you're debugging, and | |
742 | that the core file is in dhcpd.core. | |
cd977bed | 743 | |
2c85ac9b | 744 | Please see https://www.isc.org/software/dhcp/ for details on how to subscribe |
98311e4b | 745 | to the ISC DHCP mailing lists. |
da411127 | 746 | |
fef8c6f0 SR |
747 | HISTORY |
748 | ||
749 | ISC DHCP was originally written by Ted Lemon under a contract with | |
750 | Vixie Labs with the goal of being a complete reference implementation | |
751 | of the DHCP protocol. Funding for this project was provided by | |
752 | Internet Systems Consortium. The first release of the ISC DHCP | |
753 | distribution in December 1997 included just the DHCP server. | |
754 | Release 2 in June 1999 added a DHCP client and a BOOTP/DHCP relay | |
755 | agent. DHCP 3 was released in October 2001 and included DHCP failover | |
756 | support, OMAPI, Dynamic DNS, conditional behaviour, client classing, | |
757 | and more. Version 3 of the DHCP server was funded by Nominum, Inc. | |
758 | The 4.0 release in December 2007 introduced DHCPv6 protocol support | |
759 | for the server and client. | |
760 | ||
761 | This product includes cryptographic software written | |
762 | by Eric Young (eay@cryptsoft.com). |