Hi all,
I'm having a weird issue and hopefully someone can help out.
Here is my DHCP Server
set lease-time 14400 set default-gateway 2.3.4.1 set netmask 255.255.255.0 set interface "DHCP-LINK0" config ip-range edit 1 set start-ip 2.3.4.6 set end-ip 2.3.4.10 next end set option1 224 '6638393565383261616333613637343334336265393336623133666631363436' set dns-server1 8.8.8.8
The "set option1 224" value is f895e82aac3a674343be936b13ff1646 converted to 6638393565383261616333613637343334336265393336623133666631363436
But for some reason, I'm seeing the FortiWifi serial # being handed out instead.
I've deleted the option and the dhcp server and recreated. I've tried 3 completely different FortiWifis with the same "base" config and they hand out their own serial instead of the actual value for option1 224.
Any ideas?
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Verify under the DHCP server scope settings whether you have forticlient-on-net-status enabled. When enabled, FortiClients determine whether they are on-net or off-net (local or remote to the FortiGate they are registered to) based on whether the FortiGate, when acting as their DHCP server, returns its serial number in option 224 when they obtain an IP lease.
For instance:
config system dhcp server
edit 1
set forticlient-on-net-status {enable | disable}
end
With the option disabled, the FortiGate should no longer send its serial number to DHCP clients.
Incidentally, this is also how you could manually add the option to non-FortiGate DHCP servers: populate option 224 with the hex value of the controlling FortiGate's serial number.
Regards, Chris McMullan Fortinet Ottawa
Verify under the DHCP server scope settings whether you have forticlient-on-net-status enabled. When enabled, FortiClients determine whether they are on-net or off-net (local or remote to the FortiGate they are registered to) based on whether the FortiGate, when acting as their DHCP server, returns its serial number in option 224 when they obtain an IP lease.
For instance:
config system dhcp server
edit 1
set forticlient-on-net-status {enable | disable}
end
With the option disabled, the FortiGate should no longer send its serial number to DHCP clients.
Incidentally, this is also how you could manually add the option to non-FortiGate DHCP servers: populate option 224 with the hex value of the controlling FortiGate's serial number.
Regards, Chris McMullan Fortinet Ottawa
!!!!
This worked, I disabled forticlient-on-net-status and the dhcp is handing out the correct option1 224 now.
Appreciate it!
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1698 | |
1092 | |
752 | |
446 | |
228 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.