Manual:IP/DHCP Client: Difference between revisions

From MikroTik Wiki
Jump to navigation Jump to search
No edit summary
 
(36 intermediate revisions by 6 users not shown)
Line 4: Line 4:


The MikroTik RouterOS DHCP client may be enabled on any Ethernet-like interface at a time. The client will accept an address, netmask, default gateway, and two dns server addresses. The received IP address will be added to the interface with the respective netmask. The default gateway will be added to the routing table as a dynamic entry. Should the DHCP client be disabled or not renew an address, the dynamic default route will be removed. If there is already a default route installed prior the DHCP client obtains one, the route obtained by the DHCP client would be shown as invalid.
The MikroTik RouterOS DHCP client may be enabled on any Ethernet-like interface at a time. The client will accept an address, netmask, default gateway, and two dns server addresses. The received IP address will be added to the interface with the respective netmask. The default gateway will be added to the routing table as a dynamic entry. Should the DHCP client be disabled or not renew an address, the dynamic default route will be removed. If there is already a default route installed prior the DHCP client obtains one, the route obtained by the DHCP client would be shown as invalid.
RouterOS DHCP cilent asks for following options:
* option 1 - SUBNET_MASK,
* option 3 - GATEWAY_LIST,
* option 6 - TAG_DNS_LIST,
* option 33 - STATIC_ROUTE,
* option 42 - NTP_LIST,
* option 121 - CLASSLESS_ROUTE,
===Option===
DHCP client has a possibility to set up options that are sent to DHCP server. For example, hostname and MAC address. Syntax is same as for [[Manual:IP/DHCP_Server#DHCP_Options|DHCP server options]].
{{Note| This feature is available since RouterOS 6.0}}
Currently, there are three variables that can be used in options:
* HOSTNAME;
* CLIENT_MAC - client interface MAC address;
* CLIENT_DUID - client DIUD of the router, same as used for the DHCPv6 client. In conformance with rfc4361
DHCP client default options include these default Options:
{|
!|Name
!|code
!|value
|-
||clientid_duid
||61
||0xff$(CLIENT_DUID)
|-
||clientid
||61
||0x01$(CLIENT_MAC)
|-
||hostname
||12
||$(HOSTNAME)
|}
===IPv6===
Starting from v5.8 DHCP Client can receive delegated prefixes from DHCPv6 server.
Currently received prefix is added to IPv6 pool, which later can be used for example in pppoe server configuration.
Starting from v5.9, DHCPv6 client configuration was moved to /ipv6 sub-menu. [[M:IPv6/DHCP_Client | <code>Read-more >></code>]]


==Quick setup example==
==Quick setup example==
Line 13: Line 61:
</pre>
</pre>


After interface is added, you can use rint" or "print detail" command to see what parameters DHCP client acquired:  
After interface is added, you can use "print" or "print detail" command to see what parameters DHCP client acquired:  
<pre>
<pre>
[admin@MikroTik] ip dhcp-client> print detail
[admin@MikroTik] ip dhcp-client> print detail
Line 24: Line 72:
</pre>
</pre>


{{Note | If interface used by DHCP client is part of [[Manual:Virtual_Routing_and_Forwarding | VRF]] configuration, then default route and other received routes from DHCP server will be added to VRF routing table.}}


==Properties==
==Properties==
Line 29: Line 78:




<table class="styled_table">
{{Mr-arg-table-h
<tr>
|prop=Property
  <th width="40%">Property</th>
|desc=Description
  <th >Description</th>
}}
</tr>
 
<tr>
{{Mr-arg-table
    <td><var><b>add-default-route</b></var> (<em>yes | no</em>; Default: <b>yes</b>)</td>
|arg=add-default-route
    <td>Whether to install default route in routing table received from dhcp server.</td>
|type=yes {{!}} no {{!}} special-classless
</tr>
|default=yes
<tr>
|desc=Whether to install default route in routing table received from dhcp server. By default RouterOS client complies to RFC and ignores option 3 if classless option 121 is received. To force client not to ignore option 3 set ''special-classless''. This parameter is available in v6rc12+
    <td><var><b>client-id</b></var> (<em>string</em>; Default: <b></b>)</td>
 
    <td>Corresponds to the settings suggested by the network administrator or ISP. If not specified, client's MAC address will be sent.</td>
* '''yes''' - adds classless route if received, if not then add default route (old behavior)
</tr>
* '''special-classless''' - adds both classless route if received and default route  (MS style)
<tr>
 
    <td><var><b>default-route-distance</b></var> (<em>integer:0..255</em>; Default: <b></b>)</td>
}}
    <td>Distance of default route. Applicable if <code>add-default-route</code> is set to <code>yes</code>.</td>
 
</tr>
{{Mr-arg-table
<tr>
|arg=client-id
    <td><var><b>host-name</b></var> (<em>string</em>; Default: <b></b>)</td>
|type=string
    <td>Tthe host name of the client sent to a DHCP server. If not specified, client's system identity will be used.</td>
|default=
</tr>
|desc=Corresponds to the settings suggested by the network administrator or ISP. If not specified, client's MAC address will be sent
<tr>
}}
    <td><var><b>interface</b></var> (<em>name</em>; Default: <b></b>)</td>
 
    <td>Interface on which DHCP client will be running.</td>
{{Mr-arg-table
</tr>
|arg=comment
<tr>
|type=string
    <td><var><b>use-peer-dns</b></var> (<em>yes | no</em>; Default: <b>yes</b>)</td>
|default=
    <td>Whether to accept the [[DNS]] settings advertised by [[DHCP Server]]. (Will override the settings put in the <code>/ip dns</code> submenu</td>
|desc=Short description of the client
</tr>
}}
<tr>
 
    <td><var><b>use-peer-ntp</b></var> (<em>yes | no</em>; Default: <b>yes</b>)</td>
{{Mr-arg-table
    <td>Whether to accept the [[Time#NTP_client_and_server| NTP]] settings advertised by [[DHCP Server]]. (Will override the settings put in the <code>/system ntp client</code> submenu)</td>
|arg=default-route-distance
</tr>
|type=integer:0..255
</table>
|default=
<br />
|desc=Distance of default route. Applicable if <code>add-default-route</code> is set to <code>yes</code>.
}}
 
{{Mr-arg-table
|arg=disabled
|type=yes {{!}} no
|default=yes
|desc=
}}
 
 
{{Mr-arg-table
|arg=host-name
|type=string
|default=
|desc=Host name of the client sent to a DHCP server. If not specified, client's system identity will be used.
}}
 
{{Mr-arg-table
|arg=interface
|type=string
|default=
|desc=Interface on which DHCP client will be running.
}}
 
{{Mr-arg-table
|arg=script
|type=script
|default=
|desc=Execute script on status change. This parameter is available in v6.39rc33+ These are available variables that are accessible for the event script:
* <var>bound</var> - 1 - lease is added/changed; 0 - lease is removed
* <var>server-address</var> - server address
* <var>lease-address</var> - lease address provided by server
* <var>interface</var> - name of interface on which client is configured
* <var>gateway-address</var> - gateway address provided by server
* <var>vendor-specific</var> - stores value of option 43 received from DHCP server
* <var>lease-options</var> - array of received options
 
[[M:IP/DHCP_Client#Lease_script_example | <code>Example >></code>]]
}}
 
{{Mr-arg-table
|arg=use-peer-dns
|type=yes {{!}} no
|default=yes
|desc=Whether to accept the [[M:IP/DNS | DNS]] settings advertised by [[M:IP/DHCP Server | DHCP Server]]. (Will override the settings put in the <code>/ip dns</code> submenu.
}}
 
{{Mr-arg-table-end
|arg=use-peer-ntp
|type=yes {{!}} no
|default=yes
|desc=Whether to accept the [[M:System/Time#NTP_client_and_server| NTP]] settings advertised by [[M:IP/DHCP Server | DHCP Server]]. (Will override the settings put in the <code>/system ntp client</code> submenu)
}}


==Status==
==Status==
Line 70: Line 172:




<table class="styled_table">
{{Mr-arg-table-h
<tr>
|prop=Property
  <th width="40%">Property</th>
|desc=Description
  <th >Description</th>
}}
</tr>
<tr>
    <td><var><b>address</b></var> (<em>IP/mask</em>)</td>
    <td>IP address and netmask, which is assigned to DHCP Client from the Server</td>
</tr>
<tr>
    <td><var><b>dhcp-server</b></var> (<em>IP</em>)</td>
    <td>IP address of the DHCP server</td>
</tr>
<tr>
    <td><var><b>expires-after</b></var> (<em>time</em>)</td>
    <td>Time, when the lease expires (specified by the DHCP server)</td>
</tr>
<tr>
    <td><var><b>gateway</b></var> (<em>IP</em>)</td>
    <td>IP address of the gateway which is assigned by DHCP server</td>
</tr>
<tr>
    <td><var><b>invalid</b></var> (<em>yes | no</em>)</td>
    <td>Shows whether configuration is invalid.</td>
</tr>
<tr>
    <td><var><b>netmask</b></var> (<em>IP</em>)</td>
    <td></td>
</tr>
<tr>
    <td><var><b>primary-dns</b></var> (<em>IP</em>)</td>
    <td>IP address of the primary DNS server, assigned by the DHCP server</td>
</tr>
<tr>
    <td><var><b>primary-ntp</b></var> (<em>IP</em>)</td>
    <td>IP address of the primary NTP server, assigned by the DHCP server</td>
</tr>
<tr>
    <td><var><b>secondary-dns</b></var> (<em>IP</em>)</td>
    <td>IP address of the secondary DNS server, assigned by the DHCP server</td>
</tr>
<tr>
    <td><var><b>secondary-ntp</b></var> (<em>IP</em>)</td>
    <td>IP address of the secondary NTP server, assigned by the DHCP server</td>
</tr>
<tr>
    <td><var><b>status</b></var> (<em>bound | error | rebinding... | requesting... | searching... | stopped</em>)</td>
    <td>Shows the status of DHCP Client</td>
</tr>


</table>
{{Mr-arg-ro-table
|arg=address
|type=IP/Netmask
|desc=IP address and netmask, which is assigned to DHCP Client from the Server
}}


{{Mr-arg-ro-table
|arg=dhcp-server
|type=IP
|desc=IP address of the DHCP server.
}}


{{Mr-arg-ro-table
|arg=expires-after
|type=time
|desc=Time when the lease expires (specified by the DHCP server).
}}
{{Mr-arg-ro-table
|arg=gateway
|type=IP
|desc=IP address of the gateway which is assigned by DHCP server
}}
{{Mr-arg-ro-table
|arg=invalid
|type=yes {{!}} no
|desc=Shows whether configuration is invalid.
}}
{{Mr-arg-ro-table
|arg=netmask
|type=IP
|desc=
}}
{{Mr-arg-ro-table
|arg=primary-dns
|type=IP
|desc=IP address of the first DNS resolver, that was assigned by the DHCP server
}}
{{Mr-arg-ro-table
|arg=primary-ntp
|type=IP
|desc=IP address of the primary NTP server, assigned by the DHCP server
}}
{{Mr-arg-ro-table
|arg=secondary-dns
|type=IP
|desc=IP address of the second DNS resolver, assigned by the DHCP server
}}
{{Mr-arg-ro-table
|arg=secondary-ntp
|type=IP
|desc=IP address of the secondary NTP server, assigned by the DHCP server
}}
{{Mr-arg-ro-table-end
|arg=status
|type=bound {{!}} error {{!}} rebinding... {{!}} requesting... {{!}} searching... {{!}} stopped
|desc=Shows the status of DHCP Client
}}


==Menu specific commands==
==Menu specific commands==


<table class="styled_table">
{{Mr-arg-table-h
<tr>
|prop=Property
  <th width="40%">Property</th>
|desc=Description
  <th >Description</th>
}}
</tr>
 
<tr>
{{Mr-arg-ro-table
    <td><var><b>release</b></var> (<em>id</em>)</td>
|arg=release
    <td>Release current binding and restart DHCP client</td>
|type=numbers
</tr>
|desc=Release current binding and restart DHCP client
<tr>
}}
    <td><var><b>renew</b></var> (<em>id</em>)</td>
 
    <td>Renew current leases. If the renew operation was not successful, client tries to reinitialize lease (i.e. it starts lease request procedure (rebind) as if it had not received an IP address yet)</td>
{{Mr-arg-ro-table-end
</tr>
|arg=renew
</table>
|type=numbers
|desc=Renew current leases. If the renew operation was not successful, client tries to reinitialize lease (i.e. it starts lease request procedure (rebind) as if it had not received an IP address yet)
}}
 
 
 
==Examples==
===Lease script example===
 
Since RouterOS v6.39rc33, it is possible to execute a script when DHCP client obtains new lease or loses existing. This is an example script that automatically adds a default route with routing-mark=WAN1 and removes it when the lease expires or is removed.
<pre>
/ip dhcp-client
add add-default-route=no dhcp-options=hostname,clientid disabled=no interface=ether2 script="{\r\
    \n    :local rmark \"WAN1\"\r\
    \n    :local count [/ip route print count-only where comment=\"WAN1\"]\r\
    \n    :if (\$bound=1) do={\r\
    \n        :if (\$count = 0) do={\r\
    \n            /ip route add gateway=\$\"gateway-address\" comment=\"WAN1\" routing-mark=\$rmark\r\
    \n        } else={\r\
    \n            :if (\$count = 1) do={\r\
    \n                :local test [/ip route find where comment=\"WAN1\"]\r\
    \n                :if ([/ip route get \$test gateway] != \$\"gateway-address\") do={\r\
    \n                    /ip route set \$test gateway=\$\"gateway-address\"\r\
    \n                }\r\
    \n            } else={\r\
    \n                :error \"Multiple routes found\"\r\
    \n            }\r\
    \n        }\r\
    \n    } else={\r\
    \n        /ip route remove [find comment=\"WAN1\"]\r\
    \n    }\r\
    \n}\r\
    \n"
</pre>
 


===Resolve default gateway when 'router' (option3) is from different subnet===
In some cases administrators tend to set  'router' option which cannot be resolved with offered IP's subnet.
For example, DHCP server offers 192.168.88.100/24 to the client and option 3 is set to 172.16.1.1. This will result in unresolved default route:
<pre>
#      DST-ADDRESS        PREF-SRC        GATEWAY            DISTANCE
0  DS  0.0.0.0/0                          172.16.1.1              1
1 ADC  192.168.88.0/24    192.168.88.100  ether1
</pre>
To fix this we need to add /32 route to resolve the gateway over ether1, which can be done by running script below each time DHCP client gets an address
<pre>
/system script add name="dhcpL" source={ /ip address add address=($"lease-address" . "/32") network=$"gateway-address" interface=$interface }
</pre>
Now we can further extend the script, to check if address already exist, and remove the old one if changes are needed
<pre>
/system script add name="dhcpL" source={
  /ip address {
    :local ipId [find where comment="dhcpL address"]
    :if ($ipId != "") do={
      :if (!([get $ipId address] = ($"lease-address" . "/32") && [get $ipId network]=$"gateway-address" )) do={
        remove $ipId;
        add address=($"lease-address" . "/32") network=$"gateway-address" \
          interface=$interface comment="dhcpL address"
      }
    } else={
      add address=($"lease-address" . "/32") network=$"gateway-address" \
        interface=$interface comment="dhcpL address"
    }
  }
}
</pre>


{{cont}}
{{cont}}

Latest revision as of 14:11, 21 January 2020

Applies to RouterOS: v3, v4 +

Summary

The MikroTik RouterOS DHCP client may be enabled on any Ethernet-like interface at a time. The client will accept an address, netmask, default gateway, and two dns server addresses. The received IP address will be added to the interface with the respective netmask. The default gateway will be added to the routing table as a dynamic entry. Should the DHCP client be disabled or not renew an address, the dynamic default route will be removed. If there is already a default route installed prior the DHCP client obtains one, the route obtained by the DHCP client would be shown as invalid.

RouterOS DHCP cilent asks for following options:

  • option 1 - SUBNET_MASK,
  • option 3 - GATEWAY_LIST,
  • option 6 - TAG_DNS_LIST,
  • option 33 - STATIC_ROUTE,
  • option 42 - NTP_LIST,
  • option 121 - CLASSLESS_ROUTE,


Option

DHCP client has a possibility to set up options that are sent to DHCP server. For example, hostname and MAC address. Syntax is same as for DHCP server options.

Note: This feature is available since RouterOS 6.0



Currently, there are three variables that can be used in options:

  • HOSTNAME;
  • CLIENT_MAC - client interface MAC address;
  • CLIENT_DUID - client DIUD of the router, same as used for the DHCPv6 client. In conformance with rfc4361

DHCP client default options include these default Options:

Name code value
clientid_duid 61 0xff$(CLIENT_DUID)
clientid 61 0x01$(CLIENT_MAC)
hostname 12 $(HOSTNAME)

IPv6

Starting from v5.8 DHCP Client can receive delegated prefixes from DHCPv6 server. Currently received prefix is added to IPv6 pool, which later can be used for example in pppoe server configuration. Starting from v5.9, DHCPv6 client configuration was moved to /ipv6 sub-menu. Read-more >>

Quick setup example

Add a DHCP client on ether1 interface:

/ip dhcp-client add interface=ether1 disabled=no

After interface is added, you can use "print" or "print detail" command to see what parameters DHCP client acquired:

[admin@MikroTik] ip dhcp-client> print detail
Flags: X - disabled, I - invalid 
 0   interface=ether1 add-default-route=yes use-peer-dns=yes use-peer-ntp=yes
     status=bound address=192.168.0.65/24 gateway=192.168.0.1
     dhcp-server=192.168.0.1 primary-dns=192.168.0.1 primary-ntp=192.168.0.1
     expires-after=9m44s 
[admin@MikroTik] ip dhcp-client>

Note: If interface used by DHCP client is part of VRF configuration, then default route and other received routes from DHCP server will be added to VRF routing table.


Properties

Sub-menu: /ip dhcp-client


Property Description
add-default-route (yes | no | special-classless; Default: yes) Whether to install default route in routing table received from dhcp server. By default RouterOS client complies to RFC and ignores option 3 if classless option 121 is received. To force client not to ignore option 3 set special-classless. This parameter is available in v6rc12+
  • yes - adds classless route if received, if not then add default route (old behavior)
  • special-classless - adds both classless route if received and default route (MS style)
client-id (string; Default: ) Corresponds to the settings suggested by the network administrator or ISP. If not specified, client's MAC address will be sent
comment (string; Default: ) Short description of the client
default-route-distance (integer:0..255; Default: ) Distance of default route. Applicable if add-default-route is set to yes.
disabled (yes | no; Default: yes)
host-name (string; Default: ) Host name of the client sent to a DHCP server. If not specified, client's system identity will be used.
interface (string; Default: ) Interface on which DHCP client will be running.
script (script; Default: ) Execute script on status change. This parameter is available in v6.39rc33+ These are available variables that are accessible for the event script:
  • bound - 1 - lease is added/changed; 0 - lease is removed
  • server-address - server address
  • lease-address - lease address provided by server
  • interface - name of interface on which client is configured
  • gateway-address - gateway address provided by server
  • vendor-specific - stores value of option 43 received from DHCP server
  • lease-options - array of received options
Example >>
use-peer-dns (yes | no; Default: yes) Whether to accept the DNS settings advertised by DHCP Server. (Will override the settings put in the /ip dns submenu.
use-peer-ntp (yes | no; Default: yes) Whether to accept the NTP settings advertised by DHCP Server. (Will override the settings put in the /system ntp client submenu)

Status

Command /ip dhcp-client print detail will show current status of dhcp client and read-only properties listed in table below:


Property Description
address (IP/Netmask) IP address and netmask, which is assigned to DHCP Client from the Server
dhcp-server (IP) IP address of the DHCP server.
expires-after (time) Time when the lease expires (specified by the DHCP server).
gateway (IP) IP address of the gateway which is assigned by DHCP server
invalid (yes | no) Shows whether configuration is invalid.
netmask (IP)
primary-dns (IP) IP address of the first DNS resolver, that was assigned by the DHCP server
primary-ntp (IP) IP address of the primary NTP server, assigned by the DHCP server
secondary-dns (IP) IP address of the second DNS resolver, assigned by the DHCP server
secondary-ntp (IP) IP address of the secondary NTP server, assigned by the DHCP server
status (bound | error | rebinding... | requesting... | searching... | stopped) Shows the status of DHCP Client

Menu specific commands

Property Description
release (numbers) Release current binding and restart DHCP client
renew (numbers) Renew current leases. If the renew operation was not successful, client tries to reinitialize lease (i.e. it starts lease request procedure (rebind) as if it had not received an IP address yet)


Examples

Lease script example

Since RouterOS v6.39rc33, it is possible to execute a script when DHCP client obtains new lease or loses existing. This is an example script that automatically adds a default route with routing-mark=WAN1 and removes it when the lease expires or is removed.

/ip dhcp-client
add add-default-route=no dhcp-options=hostname,clientid disabled=no interface=ether2 script="{\r\
    \n    :local rmark \"WAN1\"\r\
    \n    :local count [/ip route print count-only where comment=\"WAN1\"]\r\
    \n    :if (\$bound=1) do={\r\
    \n        :if (\$count = 0) do={\r\
    \n            /ip route add gateway=\$\"gateway-address\" comment=\"WAN1\" routing-mark=\$rmark\r\
    \n        } else={\r\
    \n            :if (\$count = 1) do={\r\
    \n                :local test [/ip route find where comment=\"WAN1\"]\r\
    \n                :if ([/ip route get \$test gateway] != \$\"gateway-address\") do={\r\
    \n                    /ip route set \$test gateway=\$\"gateway-address\"\r\
    \n                }\r\
    \n            } else={\r\
    \n                :error \"Multiple routes found\"\r\
    \n            }\r\
    \n        }\r\
    \n    } else={\r\
    \n        /ip route remove [find comment=\"WAN1\"]\r\
    \n    }\r\
    \n}\r\
    \n"


Resolve default gateway when 'router' (option3) is from different subnet

In some cases administrators tend to set 'router' option which cannot be resolved with offered IP's subnet. For example, DHCP server offers 192.168.88.100/24 to the client and option 3 is set to 172.16.1.1. This will result in unresolved default route:

 #      DST-ADDRESS        PREF-SRC        GATEWAY            DISTANCE
 0  DS  0.0.0.0/0                          172.16.1.1              1
 1 ADC  192.168.88.0/24    192.168.88.100  ether1 

To fix this we need to add /32 route to resolve the gateway over ether1, which can be done by running script below each time DHCP client gets an address

/system script add name="dhcpL" source={ /ip address add address=($"lease-address" . "/32") network=$"gateway-address" interface=$interface }

Now we can further extend the script, to check if address already exist, and remove the old one if changes are needed

/system script add name="dhcpL" source={ 
  /ip address {
    :local ipId [find where comment="dhcpL address"]
    :if ($ipId != "") do={
      :if (!([get $ipId address] = ($"lease-address" . "/32") && [get $ipId network]=$"gateway-address" )) do={
        remove $ipId;
        add address=($"lease-address" . "/32") network=$"gateway-address" \
          interface=$interface comment="dhcpL address"
      }
    } else={
      add address=($"lease-address" . "/32") network=$"gateway-address" \
        interface=$interface comment="dhcpL address"
    }
  }
}

[ Top | Back to Content ]