DHCP Options

Reply
JAG
L1 Bithead

DHCP Options

Hi All,

I need to send DHCP option 119 to my clients that are using the Palo Alto as their DHCP server.

Please can you confirm whether this is possible or not?

 

Thanks,

Jaggie

Tags (1)
L7 Applicator

Re: DHCP Options

Hello Jaggie,

As per my understanding, the DHCP Option 119 - Domain Suffix Search Lists are not supported by the PAN OS as of now. There are 2 feature request already submitted for adding more DHCP options into PAN OS as mentioned below:


DHCO OPtions

FR ID-784

Ability to support custom DHCP options within PANOS DHCP Server.

FR ID-2245


I would recommend you to contact with your Palo ALto SE for the same.


Thanks

L1 Bithead

Re: DHCP Options

Hi,

 

I know this is a 5 year old ticket but does anyone know if Pan OS finally has this capability? It's not working for me. I tried using using ASCII and Hex for option 119 and neither work.

 

Thanks,
David

L3 Networker

Re: DHCP Options

This is certainly supported now.

Can you probide more details on what you would like to do and what's not working?

https://docs.paloaltonetworks.com/pan-os/9-0/pan-os-admin/networking/dhcp/dhcp-options/dhcp-options-...

 


*Please like or mark as solution if the answer is helpful!*
L1 Bithead

Re: DHCP Options

Hi,

 

I have 3 domains that I'd like to add to my dhcp client domain search list. They are internal company domains so I will use the generic ones below for this example.

 

domaina.com

domainb.com

domainc.com

 

I'm using my PA850 as a dhcp server.

 

I added option 119 as a custom option. I first chose the hex value approach and used an ASCII to hex converter to add these domains as comma separated values. This is how it is done on some Cisco devices. That didn't work on my Windows 10 dhcp client. If I do an ipconfig /release and an ipconfig /renew I get my addresses, my multi-value option 6 DNS server list but nothing for domain search list.

 

I then tried one hex value per line. That did not work.

 

So I removed the values and reapplied them as ASCII as one per line, not comma separated. That didn't work either. There's no error when I do the commit. Everything is accepted. But the client doesn't pick up the suffix list.

 

The I tried to use ASCII with the three domains on a single separated by commas. That didn't work.

 

So I'm at a loss. Any advise you can provide would be appreciated.

 

Thanks,

David

L1 Bithead

Re: DHCP Options

Also, I'm using PAN OS 8.1.9

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!