Bug #12922: Classless static routes received on DHCP WAN can override chosen default gateway - pfSense - pfSense bugtracker

Custom queries

2.8.0 - Resolved/Closed
2.8.1 - Resolved/Closed
2.9.0 - All Open Bugs
2.9.0 - All Open Features
2.9.0 - All Open Issues
2.9.0 - All Open Regressions
2.9.0 - Feedback
2.9.0 - Needs Attention
2.9.0 - New/Confirmed
2.9.0 - Pull Requests
2.9.0 - Regressions affecting 2.9.0
2.9.0 - Resolved/Closed
25.07 Plus - All Closed Issues
25.07 Target - All Closed Issues
25.11 Plus - All Closed Issues
25.11 Target - All Closed Issues
25.11.1 Plus - All Closed Issues
25.11.1 Target - All Closed Issues
26.03 Plus - All Closed Issues
26.03 Target - All Closed Issues
26.03.1 Plus - All Closed Issues
26.03.1 Target - All Closed Issues
26.07 Plus - All Closed Issues
26.07 Plus - All Open Issues
26.07 Plus - Feedback Issues
26.07 Plus - Needs Attention/Work
26.07 Plus - New/Confirmed/In Progress Issues
26.07 Plus - Pull Request Review
26.07 Plus - Waiting on Merge
26.07 Target - All Closed Issues
26.07 Target - All Open Issues
All Open Issues assigned to Me
All Open Pull Requests
Any Target - All Open Regressions
Any Target - Feedback Issues
CE-Next - All Closed Issues (Move to specific target)
CE-Next - All Open Issues
CE-Next - Feedback (Likely needs target changed)
New Issues by Category - Future Target
New Issues by Category - No Target
New Issues by Category - No Target+Future
No Target - All Open Issues (Base Only)
No Target - New Issues (Base Only)
No Target - New Issues (Base and Packages)
Release Notes - CE Target Version (DO NOT EDIT)
Release Notes - Plus Target Version (DO NOT EDIT)
Release Notes - Target Version (DO NOT EDIT)

Actions

Copy link

Bug #12922

open

Classless static routes received on DHCP WAN can override chosen default gateway

Added by David Myers about 4 years ago. Updated 29 days ago.

Status:

Confirmed

Priority:

Normal

Assignee:

Category:

DHCP (IPv4)

Target version:

Start date:

Due date:

% Done:

Estimated time:

Plus Target Version:

Release Notes:

Default

Affected Version:

Affected Architecture:

Description

Although I'm still running 2.5.2 I believe this bug is also in 2.6.0 based on a diff of the file in question.

I have multiple WANs, one of which is Starlink which sends DHCP Option 121 classless routes. My default gateway is explicitly set to a different interface but sometimes it changes to Starlink when the Starlink interface address changes. I believe there is an error here in pfSense-dhclient-script that causes the default route to change whether or not the gateway is currently set to be the default.

For example, here's a recent log message from when Starlink on igb3 got a new address:

Mar  9 05:23:16 router dhclient[61686]: New Classless Static Routes (igb3):  192.168.100.1/32 0.0.0.0 34.120.255.244/32 0.0.0.0 default 100.64.0.1

When I extract the code from pfSense-dhclient-script referenced above and create a test stub using the routes from the log message I get this output:

New Classless Static Routes (igb3): 192.168.100.1/32 0.0.0.0 34.120.255.244/32 0.0.0.0 default 100.64.0.1
route add 192.168.100.1/32 -iface igb3
route add 34.120.255.244/32 -iface igb3
route add default 100.64.0.1

I'm assuming that last route command is the problem. There is no test to confirm igb3 is the intended default gateway.

History
Notes
Property changes

Actions

Copy link

Updated by Jim Pingle about 4 years ago

Subject changed from Default IPv4 gateway changes on its own to Classless static routes received on DHCP WAN can override chosen default gateway
Category changed from Gateways to DHCP (IPv4)

Rewording the subject to be more precise.

It's unusual to get classless static routes from DHCP in most cases so the situation has likely never come up before.

From the notes in the source:

    # RFC 3442: If the DHCP server returns both a Classless Static
    # Routes option and a Router option, the DHCP client MUST ignore
    # the Router option.

So there should maybe be more logic there as well to treat the default as a gateway replacing the router option (e.g. ignore the route and set it as the value of $new_routers)

Actions

Copy link

Updated by David Myers about 4 years ago

I think there's a similar issue here in pfSense-dhclient-script that can delete the default route incorrectly.

Actions

Copy link

Updated by David Myers about 4 years ago

I've discontinued my Starlink service so I may not be able to help the with debugging of a fix for this issue in the future, but I thought I'd mention that this simple-minded patch seems to have helped:

--- /usr/local/sbin/pfSense-dhclient-script.orig    2021-05-28 07:35:21.000000000 -0400
+++ /usr/local/sbin/pfSense-dhclient-script    2022-03-15 08:50:19.904170000 -0400
@@ -163,10 +163,14 @@
         fill_classless_routes "$old_classless_routes" 
         set $classless_routes
         while [ $# -gt 1 ]; do
-            route delete "$1" "$2" 
+            if [ "default" = "$1" ]; then
+                old_routers="$2" 
+            else
+                route delete "$1" "$2" 
+            fi
             shift; shift
         done
-        return 0;
+        old_static_routes="" 
     fi

     # Only allow the default route to be overridden if it's on our own interface
@@ -209,14 +213,16 @@
         $LOGGER "New Classless Static Routes ($interface): $classless_routes" 
         set $classless_routes
         while [ $# -gt 1 ]; do
-            if [ "0.0.0.0" = "$2" ]; then
+            if [ "default" = "$1" ]; then
+                new_routers="$2" 
+            elif [ "0.0.0.0" = "$2" ]; then
                 route add "$1" -iface "$interface" 
             else
                 route add "$1" "$2" 
             fi
             shift; shift
         done
-        return
+        new_static_routes="" 
     fi

     ADDED_ROUTE=no

Actions

Copy link

Updated by Oleksii Tucha almost 2 years ago

The issue still exists in 2.7.2, the patch from David works.

Actions

Copy link

Updated by Craig Coonrad about 1 year ago

Private changed from Yes to No

Actions

Copy link

Updated by Eduardo Silva about 1 year ago

Oleksii Tucha wrote in #note-4:

The issue still exists in 2.7.2, the patch from David works.

It is March 2025, this issue still exists in 24.11-RELEASE (amd64) with
System_Patches 2.2.20_4 and all patches applied. Support ticket with
Netgate has been opened, we are just waiting for resolution.

Actions

Copy link

Updated by Eduardo Silva about 1 year ago

As a note, it also showed up once Starlink was connected to the 3rd WAN port.

Actions

Copy link

#10

Updated by Danilo Zrenjanin about 1 year ago

Status changed from New to Confirmed

Actions

Copy link

#11

Updated by Kris Phillips 4 months ago

Customer in ticket has also run into this issue.

Actions

Copy link

#12

Updated by Sam Wildig 3 months ago

This issue still exists in 25.11.1-RELEASE and the patch from David above resolves the issue.

Actions

Copy link

#13

Updated by C Gilbert about 1 month ago

The above patch does not apply using the patch utility. It's possible that the base code is no longer close enough for the patch utility to recognize the code it needs to change.

I have not dug into the code to see if this hypothesis is true.

However, as the others have said, it would be beneficial to get this patch made official. Since 90% of the coding work is done, it seems like it should be a pretty easy win to get it polished, tested, and QAed.

Four years is a long time to get a patch for a large and growing service like Starlink done.

Actions

Copy link

#14

Updated by Azamat Khakimyanov about 1 month ago

The customer reported that the issue still exists on 26.03 and that the patch does not resolve the problem. (HS#41535590541)

Actions

Copy link

#15

Updated by Marcos M 29 days ago

Here's the (untested) patch from #note-3 regenerated for 26.03: Show Hide

diff --git a/src/usr/local/sbin/pfSense-dhclient-script b/src/usr/local/sbin/pfSense-dhclient-script
index 89ad0c83f8..d50e1da554 100755
--- a/src/usr/local/sbin/pfSense-dhclient-script
+++ b/src/usr/local/sbin/pfSense-dhclient-script
@@ -175,10 +175,14 @@ delete_old_routes() {
         fill_classless_routes "$old_classless_routes" 
         set $classless_routes
         while [ $# -gt 1 ]; do
-            $ROUTE delete "$1" "$2" 
+            if [ "default" = "$1" ]; then
+                old_routers="$2" 
+            else
+                $ROUTE delete "$1" "$2" 
+            fi
             shift; shift
         done
-        return 0;
+        old_static_routes="" 
     fi

     # Only allow the default route to be overridden if it's on our own interface
@@ -225,14 +229,16 @@ add_new_routes() {
         _logger "LOG_NOTICE" "New Classless Static Routes (${interface}): ${classless_routes}" 
         set $classless_routes
         while [ $# -gt 1 ]; do
-            if [ "0.0.0.0" = "$2" ]; then
+            if [ "default" = "$1" ]; then
+                new_routers="$2" 
+            elif [ "0.0.0.0" = "$2" ]; then
                 $ROUTE add "$1" -iface "$interface" 
             else
                 $ROUTE add "$1" "$2" 
             fi
             shift; shift
         done
-        return
+        new_static_routes="" 
     fi

     ADDED_ROUTE=no

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense

Custom queries

Bug #12922

Classless static routes received on DHCP WAN can override chosen default gateway

Updated by Jim Pingle about 4 years ago

Updated by David Myers about 4 years ago

Updated by David Myers about 4 years ago

Updated by Oleksii Tucha almost 2 years ago

Updated by Craig Coonrad about 1 year ago

Updated by Eduardo Silva about 1 year ago

Updated by Eduardo Silva about 1 year ago

Updated by Danilo Zrenjanin about 1 year ago

Updated by Kris Phillips 4 months ago

Updated by Sam Wildig 3 months ago

Updated by C Gilbert about 1 month ago

Updated by Azamat Khakimyanov about 1 month ago

Updated by Marcos M 29 days ago