xref: /freebsd/sbin/dhclient/dhclient.conf.5 (revision a64729f5077d77e13b9497cb33ecb3c82e606ee8)
1.\"	$OpenBSD: dhclient.conf.5,v 1.5 2004/11/01 23:10:18 henning Exp $
2.\"
3.\" Copyright (c) 1997 The Internet Software Consortium.
4.\" All rights reserved.
5.\"
6.\" Redistribution and use in source and binary forms, with or without
7.\" modification, are permitted provided that the following conditions
8.\" are met:
9.\"
10.\" 1. Redistributions of source code must retain the above copyright
11.\"    notice, this list of conditions and the following disclaimer.
12.\" 2. Redistributions in binary form must reproduce the above copyright
13.\"    notice, this list of conditions and the following disclaimer in the
14.\"    documentation and/or other materials provided with the distribution.
15.\" 3. Neither the name of The Internet Software Consortium nor the names
16.\"    of its contributors may be used to endorse or promote products derived
17.\"    from this software without specific prior written permission.
18.\"
19.\" THIS SOFTWARE IS PROVIDED BY THE INTERNET SOFTWARE CONSORTIUM AND
20.\" CONTRIBUTORS ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES,
21.\" INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
22.\" MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
23.\" DISCLAIMED.  IN NO EVENT SHALL THE INTERNET SOFTWARE CONSORTIUM OR
24.\" CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
25.\" SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
26.\" LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF
27.\" USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
28.\" ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
29.\" OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT
30.\" OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
31.\" SUCH DAMAGE.
32.\"
33.\" This software has been written for the Internet Software Consortium
34.\" by Ted Lemon <mellon@fugue.com> in cooperation with Vixie
35.\" Enterprises.  To learn more about the Internet Software Consortium,
36.\" see ``http://www.isc.org/isc''.  To learn more about Vixie
37.\" Enterprises, see ``http://www.vix.com''.
38.\"
39.Dd March 17, 2023
40.Dt DHCLIENT.CONF 5
41.Os
42.Sh NAME
43.Nm dhclient.conf
44.Nd DHCP client configuration file
45.Sh DESCRIPTION
46The
47.Nm
48file contains configuration information for
49.Xr dhclient 8 ,
50the Internet Software Consortium DHCP Client.
51.Pp
52The
53.Nm
54file is a free-form ASCII text file.
55It is parsed by the recursive-descent parser built into
56.Xr dhclient 8 .
57The file may contain extra tabs and newlines for formatting purposes.
58Keywords in the file are case-insensitive.
59Comments may be placed anywhere within the file (except within quotes).
60Comments begin with the
61.Ql #
62character and end at the end of the line.
63.Pp
64The
65.Nm
66file can be used to configure the behaviour of the client in a wide variety
67of ways: protocol timing, information requested from the server, information
68required of the server, defaults to use if the server does not provide
69certain information, values with which to override information provided by
70the server, or values to prepend or append to information provided by the
71server.
72The configuration file can also be preinitialized with addresses to
73use on networks that do not have DHCP servers.
74.Sh PROTOCOL TIMING
75The timing behaviour of the client need not be configured by the user.
76If no timing configuration is provided by the user, a fairly
77reasonable timing behaviour will be used by default - one which
78results in fairly timely updates without placing an inordinate load on
79the server.
80.Pp
81The following statements can be used to adjust the timing behaviour of
82the DHCP client if required, however:
83.Bl -tag -width indent
84.It Ic timeout Ar time ;
85The
86.Ic timeout
87statement determines the amount of time that must pass between the
88time that the client begins to try to determine its address and the
89time that it decides that it is not going to be able to contact a server.
90By default, this timeout is sixty seconds.
91After the timeout has passed, if there are any static leases defined in the
92configuration file, or any leases remaining in the lease database that
93have not yet expired, the client will loop through these leases
94attempting to validate them, and if it finds one that appears to be
95valid, it will use that lease's address.
96If there are no valid static leases or unexpired leases in the lease database,
97the client will restart the protocol after the defined retry interval.
98.It Ic retry Ar time ;
99The
100.Ic retry
101statement determines the time that must pass after the client has
102determined that there is no DHCP server present before it tries again
103to contact a DHCP server.
104By default, this is five minutes.
105.It Ic select-timeout Ar time ;
106It is possible (some might say desirable) for there to be more than
107one DHCP server serving any given network.
108In this case, it is possible that a client may be sent more than one offer
109in response to its initial lease discovery message.
110It may be that one of these offers is preferable to the other
111(e.g., one offer may have the address the client previously used,
112and the other may not).
113.Pp
114The
115.Ic select-timeout
116is the time after the client sends its first lease discovery request
117at which it stops waiting for offers from servers, assuming that it
118has received at least one such offer.
119If no offers have been received by the time the
120.Ic select-timeout
121has expired, the client will accept the first offer that arrives.
122.Pp
123By default, the
124.Ic select-timeout
125is zero seconds - that is, the client will take the first offer it sees.
126.It Ic reboot Ar time ;
127When the client is restarted, it first tries to reacquire the last
128address it had.
129This is called the INIT-REBOOT state.
130If it is still attached to the same network it was attached to when it last
131ran, this is the quickest way to get started.
132The
133.Ic reboot
134statement sets the time that must elapse after the client first tries
135to reacquire its old address before it gives up and tries to discover
136a new address.
137By default, the reboot timeout is ten seconds.
138.It Ic backoff-cutoff Ar time ;
139The client uses an exponential backoff algorithm with some randomness,
140so that if many clients try to configure themselves at the same time,
141they will not make their requests in lockstep.
142The
143.Ic backoff-cutoff
144statement determines the maximum amount of time that the client is
145allowed to back off.
146It defaults to two minutes.
147.It Ic initial-interval Ar time ;
148The
149.Ic initial-interval
150statement sets the amount of time between the first attempt to reach a
151server and the second attempt to reach a server.
152Each time a message is sent, the interval between messages is incremented by
153twice the current interval multiplied by a random number between zero and one.
154If it is greater than the
155.Ic backoff-cutoff
156amount, it is set to that
157amount.
158It defaults to ten seconds.
159.El
160.Sh LEASE REQUIREMENTS AND REQUESTS
161The DHCP protocol allows the client to request that the server send it
162specific information, and not send it other information that it is not
163prepared to accept.
164The protocol also allows the client to reject offers from servers if they
165do not contain information the client needs, or if the information provided
166is not satisfactory.
167.Pp
168There is a variety of data contained in offers that DHCP servers send
169to DHCP clients.
170The data that can be specifically requested is what are called
171.Em DHCP Options .
172DHCP Options are defined in
173.Xr dhcp-options 5 .
174.Bl -tag -width indent
175.It Ic request Oo Ar option Oc Oo , Ar ... option Oc ;
176The
177.Ic request
178statement causes the client to request that any server responding to the
179client send the client its values for the specified options.
180Only the option names should be specified in the request statement - not
181option parameters.
182.It Ic require Oo Ar option Oc Oo , Ar ... option Oc ;
183The
184.Ic require
185statement lists options that must be sent in order for an offer to be accepted.
186Offers that do not contain all the listed options will be ignored.
187.It Ic send No { Oo Ar option declaration Oc Oo , Ar ... option declaration Oc }
188The
189.Ic send
190statement causes the client to send the specified options to the server with
191the specified values.
192These are full option declarations as described in
193.Xr dhcp-options 5 .
194Options that are always sent in the DHCP protocol should not be specified
195here, except that the client can specify a
196.Ar dhcp-lease-time
197option other than the default requested lease time, which is two hours.
198The other obvious use for this statement is to send information to the server
199that will allow it to differentiate between this client and other
200clients or kinds of clients.
201.It Ic ignore Oo Ar option Oc Oo , Ar ... option Oc ;
202The
203.Ic ignore
204statement causes the client to disregard the specified options in any offer
205received, as though the server had never sent them at all.
206.El
207.Sh OPTION MODIFIERS
208In some cases, a client may receive option data from the server which
209is not really appropriate for that client, or may not receive
210information that it needs, and for which a useful default value exists.
211It may also receive information which is useful, but which needs to be
212supplemented with local information.
213To handle these needs, several option modifiers are available.
214.Bl -tag -width indent
215.It Xo
216.Ic default No { Op Ar option declaration
217.Oo , Ar ... option declaration Oc }
218.Xc
219If for some set of options the client should use the value supplied by
220the server, but needs to use some default value if no value was supplied
221by the server, these values can be defined in the
222.Ic default
223statement.
224.It Xo
225.Ic supersede No { Op Ar option declaration
226.Oo , Ar ... option declaration Oc }
227.Xc
228If for some set of options the client should always use its own value
229rather than any value supplied by the server, these values can be defined
230in the
231.Ic supersede
232statement.
233.Pp
234Some options values have special meaning:
235.Bl -tag -width indent
236.It Ar interface-mtu
237Any server-supplied interface MTU is ignored by the client if a
238.Ic supersede
239zero value is configured.
240.El
241.It Xo
242.Ic prepend No { Op Ar option declaration
243.Oo , Ar ... option declaration Oc }
244.Xc
245If for some set of options the client should use a value you supply,
246and then use the values supplied by the server, if any,
247these values can be defined in the
248.Ic prepend
249statement.
250The
251.Ic prepend
252statement can only be used for options which allow more than one value to
253be given.
254This restriction is not enforced - if violated, the results are unpredictable.
255.It Xo
256.Ic append No { Op Ar option declaration
257.Oo , Ar ... option declaration Oc }
258.Xc
259If for some set of options the client should first use the values
260supplied by the server, if any, and then use values you supply, these
261values can be defined in the
262.Ic append
263statement.
264The
265.Ic append
266statement can only be used for options which allow more than one value to
267be given.
268This restriction is not enforced - if you ignore it,
269the behaviour will be unpredictable.
270.El
271.Sh LEASE DECLARATIONS
272The lease declaration:
273.Pp
274.D1 Ic lease No { Ar lease-declaration Oo Ar ... lease-declaration Oc }
275.Pp
276The DHCP client may decide after some period of time (see
277.Sx PROTOCOL TIMING )
278that it is not going to succeed in contacting a server.
279At that time, it consults its own database of old leases and tests each one
280that has not yet timed out by pinging the listed router for that lease to
281see if that lease could work.
282It is possible to define one or more
283.Em fixed
284leases in the client configuration file for networks where there is no DHCP
285or BOOTP service, so that the client can still automatically configure its
286address.
287This is done with the
288.Ic lease
289statement.
290.Pp
291NOTE: the lease statement is also used in the
292.Pa dhclient.leases
293file in order to record leases that have been received from DHCP servers.
294Some of the syntax for leases as described below is only needed in the
295.Pa dhclient.leases
296file.
297Such syntax is documented here for completeness.
298.Pp
299A lease statement consists of the
300.Ic lease
301keyword, followed by a left
302curly brace, followed by one or more lease declaration statements,
303followed by a right curly brace.
304The following lease declarations are possible:
305.Bl -tag -width indent
306.It Ic bootp ;
307The
308.Ic bootp
309statement is used to indicate that the lease was acquired using the
310BOOTP protocol rather than the DHCP protocol.
311It is never necessary to specify this in the client configuration file.
312The client uses this syntax in its lease database file.
313.It Ic interface Qq Ar string ;
314The
315.Ic interface
316lease statement is used to indicate the interface on which the lease is valid.
317If set, this lease will only be tried on a particular interface.
318When the client receives a lease from a server, it always records the
319interface number on which it received that lease.
320If predefined leases are specified in the
321.Nm
322file, the interface should also be specified, although this is not required.
323.It Ic fixed-address Ar ip-address ;
324The
325.Ic fixed-address
326statement is used to set the IP address of a particular lease.
327This is required for all lease statements.
328The IP address must be specified as a dotted quad (e.g.,
329.Li 12.34.56.78 ) .
330.It Ic filename Qq Ar string ;
331The
332.Ic filename
333statement specifies the name of the boot filename to use.
334This is not used by the standard client configuration script, but is
335included for completeness.
336.It Ic server-name Qq Ar string ;
337The
338.Ic server-name
339statement specifies the name of the boot server name to use.
340This is also not used by the standard client configuration script.
341.It Ic option Ar option-declaration ;
342The
343.Ic option
344statement is used to specify the value of an option supplied by the server,
345or, in the case of predefined leases declared in
346.Nm ,
347the value that the user wishes the client configuration script to use if the
348predefined lease is used.
349.It Ic script Qq Ar script-name ;
350The
351.Ic script
352statement is used to specify the pathname of the DHCP client configuration
353script.
354This script is used by the DHCP client to set each interface's initial
355configuration prior to requesting an address, to test the address once it
356has been offered, and to set the interface's final configuration once a
357lease has been acquired.
358If no lease is acquired, the script is used to test predefined leases, if
359any, and also called once if no valid lease can be identified.
360For more information, see
361.Xr dhclient.leases 5 .
362.It Ic medium Qq Ar "media setup" ;
363The
364.Ic medium
365statement can be used on systems where network interfaces cannot
366automatically determine the type of network to which they are connected.
367The
368.Ar "media setup"
369string is a system-dependent parameter which is passed
370to the DHCP client configuration script when initializing the interface.
371On
372.Ux
373and
374.Ux Ns -like
375systems, the argument is passed on the
376.Xr ifconfig 8
377command line
378when configuring the interface.
379.Pp
380The DHCP client automatically declares this parameter if it used a
381media type (see the
382.Ic media
383statement) when configuring the interface in order to obtain a lease.
384This statement should be used in predefined leases only if the network
385interface requires media type configuration.
386.It Ic renew Ar date ;
387.It Ic rebind Ar date ;
388.It Ic expire Ar date ;
389The
390.Ic renew
391statement defines the time at which the DHCP client should begin trying to
392contact its server to renew a lease that it is using.
393The
394.Ic rebind
395statement defines the time at which the DHCP client should begin to try to
396contact
397.Em any
398DHCP server in order to renew its lease.
399The
400.Ic expire
401statement defines the time at which the DHCP client must stop using a lease
402if it has not been able to contact a server in order to renew it.
403.El
404.Pp
405These declarations are automatically set in leases acquired by the
406DHCP client, but must also be configured in predefined leases - a
407predefined lease whose expiry time has passed will not be used by the
408DHCP client.
409.Pp
410Dates are specified as follows:
411.Bd -ragged -offset indent
412.Ar <weekday>
413.Sm off
414.Ar <year> No / Ar <month> No / Ar <day>
415.Ar <hour> : <minute> : <second>
416.Sm on
417.Ed
418.Pp
419The weekday is present to make it easy for a human to tell when a
420lease expires - it is specified as a number from zero to six, with zero
421being Sunday.
422When declaring a predefined lease, it can always be specified as zero.
423The year is specified with the century, so it should generally be four
424digits except for really long leases.
425The month is specified as a number starting with 1 for January.
426The day of the month is likewise specified starting with 1.
427The hour is a number between 0 and 23,
428the minute a number between 0 and 59,
429and the second also a number between 0 and 59.
430.Sh ALIAS DECLARATIONS
431.Ic alias No { Ar declarations ... No }
432.Pp
433Some DHCP clients running TCP/IP roaming protocols may require that in
434addition to the lease they may acquire via DHCP, their interface also
435be configured with a predefined IP alias so that they can have a
436permanent IP address even while roaming.
437The Internet Software Consortium DHCP client does not support roaming with
438fixed addresses directly, but in order to facilitate such experimentation,
439the DHCP client can be set up to configure an IP alias using the
440.Ic alias
441declaration.
442.Pp
443The
444.Ic alias
445declaration resembles a lease declaration, except that options other than
446the subnet-mask option are ignored by the standard client configuration
447script, and expiry times are ignored.
448A typical alias declaration includes an interface declaration, a fixed-address
449declaration for the IP alias address, and a subnet-mask option declaration.
450A medium statement should never be included in an alias declaration.
451.Sh OTHER DECLARATIONS
452.Bl -tag -width indent
453.It Ic reject Ar ip-address ;
454The
455.Ic reject
456statement causes the DHCP client to reject offers from servers who use
457the specified address as a server identifier.
458This can be used to avoid being configured by rogue or misconfigured DHCP
459servers, although it should be a last resort - better to track down
460the bad DHCP server and fix it.
461.It Ic interface Qo Ar name Qc { Ar declarations ... No }
462A client with more than one network interface may require different
463behaviour depending on which interface is being configured.
464All timing parameters and declarations other than lease and alias
465declarations can be enclosed in an interface declaration, and those
466parameters will then be used only for the interface that matches the
467specified name.
468Interfaces for which there is no interface declaration will use the
469parameters declared outside of any interface declaration,
470or the default settings.
471.It Ic media Qo Ar "media setup" Qc Oo , Qo Ar "media setup" Qc , Ar ... Oc ;
472The
473.Ic media
474statement defines one or more media configuration parameters which may
475be tried while attempting to acquire an IP address.
476The DHCP client will cycle through each media setup string on the list,
477configuring the interface using that setup and attempting to boot,
478and then trying the next one.
479This can be used for network interfaces which are not capable of sensing
480the media type unaided - whichever media type succeeds in getting a request
481to the server and hearing the reply is probably right (no guarantees).
482.Pp
483The media setup is only used for the initial phase of address
484acquisition (the DHCPDISCOVER and DHCPOFFER packets).
485Once an address has been acquired, the DHCP client will record it in its
486lease database and will record the media type used to acquire the address.
487Whenever the client tries to renew the lease, it will use that same media type.
488The lease must expire before the client will go back to cycling through media
489types.
490.It Ic vlan-pcp Ar code ;
491The
492.Ic vlan-pcp
493statement sets the PCP (Priority Code Point) value for the VLAN header.
494This requires the
495.Va net.link.vlan.mtag_pcp
496sysctl to be set to 1.
497.El
498.Sh EXAMPLES
499The following configuration file is used on a laptop
500which has an IP alias of
501.Li 192.5.5.213 ,
502and has one interface,
503.Li ep0
504(a 3Com 3C589C).
505Booting intervals have been shortened somewhat from the default, because
506the client is known to spend most of its time on networks with little DHCP
507activity.
508The laptop does roam to multiple networks.
509.Bd -literal -offset indent
510timeout 60;
511retry 60;
512reboot 10;
513select-timeout 5;
514initial-interval 2;
515reject 192.33.137.209;
516
517interface "ep0" {
518    send host-name "andare.fugue.com";
519    send dhcp-client-identifier 1:0:a0:24:ab:fb:9c;
520    send dhcp-lease-time 3600;
521    supersede domain-name "fugue.com rc.vix.com home.vix.com";
522    prepend domain-name-servers 127.0.0.1;
523    request subnet-mask, broadcast-address, time-offset, routers,
524	    domain-name, domain-name-servers, host-name;
525    require subnet-mask, domain-name-servers;
526    script "/etc/dhclient-script";
527    media "media 10baseT/UTP", "media 10base2/BNC";
528}
529
530alias {
531  interface "ep0";
532  fixed-address 192.5.5.213;
533  option subnet-mask 255.255.255.255;
534}
535.Ed
536.Pp
537This is a very complicated
538.Nm
539file - in general, yours should be much simpler.
540In many cases, it is sufficient to just create an empty
541.Nm
542file - the defaults are usually fine.
543.Sh SEE ALSO
544.Xr dhclient.leases 5 ,
545.Xr dhcp-options 5 ,
546.Xr dhcpd.conf 5 ,
547.Xr dhclient 8 ,
548.Xr dhcpd 8
549.Rs
550.%R "RFC 2132, RFC 2131"
551.Re
552.Sh AUTHORS
553.An -nosplit
554The
555.Xr dhclient 8
556utility
557was written by
558.An Ted Lemon Aq Mt mellon@vix.com
559under a contract with Vixie Labs.
560.Pp
561The current implementation was reworked by
562.An Henning Brauer Aq Mt henning@openbsd.org .
563