DHCPCD

Section: Maintenance Commands (8)
Page Index

BSD mandoc
 

NAME

dhcpcd - a DHCP client  

SYNOPSIS

[-146ABbDdEGgHJKLMNPpqTV ] [-C , --nohook hook ] [-c , --script script ] [-e , --env value ] [-F , --fqdn FQDN ] [-f , --config file ] [-h , --hostname hostname ] [-I , --clientid clientid ] [-i , --vendorclassid vendorclassid ] [-j , --logfile logfile ] [-l , --leasetime seconds ] [-m , --metric metric ] [-O , --nooption option ] [-o , --option option ] [-Q , --require option ] [-r , --request address ] [-S , --static value ] [-s , --inform address [/cidr [/broadcast_address ] ] ] [--inform6 ] [-t , --timeout seconds ] [-u , --userclass class ] [-v , --vendor code , value ] [-W , --whitelist address [/cidr ] ] [-w ] [--waitip = [4 | 6] ] [-y , --reboot seconds ] [-X , --blacklist address [/cidr ] ] [-Z , --denyinterfaces pattern ] [-z , --allowinterfaces pattern ] [--inactive ] [--configure ] [--noconfigure ] [interface] [...]
-n , --rebind [interface]
-k , --release [interface]
-U , --dumplease [interface ]
--version
-x , --exit [interface]  

DESCRIPTION

is an implementation of the DHCP client specified in RFC 2131 gets the host information Po IP address, routes, etc Pc from a DHCP server and configures the network interface of the machine on which it is running. then runs the configuration script which writes DNS information to resolvconf(8), if available, otherwise directly to /etc/resolv.conf If the hostname is currently blank, (null) or localhost, or force_hostname is YES or TRUE or 1 then sets the hostname to the one supplied by the DHCP server. then daemonises and waits for the lease renewal time to lapse. It will then attempt to renew its lease and reconfigure if the new lease changes when the lease begins to expire or the DHCP server sends a message to renew early.

If any interface reports a working carrier then will try to obtain a lease before forking to the background, otherwise it will fork right away. This behaviour can be modified with the -b , --background and -w , --waitip options.

is also an implementation of the BOOTP client specified in RFC 951

is also an implementation of the IPv6 Router Solicitor as specified in RFC 4861 and RFC 6106

is also an implementation of the IPv6 Privacy Extensions to AutoConf as specified in RFC 4941 This feature needs to be enabled in the kernel and will start using it.

is also an implementation of the DHCPv6 client as specified in RFC 3315 By default, only starts DHCPv6 when instructed to do so by an IPV6 Router Advertisement. If no Identity Association is configured, then a Non-temporary Address is requested.  

Local Link configuration

If failed to obtain a lease, it probes for a valid IPv4LL address Po aka ZeroConf, aka APIPA Pc . Once obtained it restarts the process of looking for a DHCP server to get a proper address.

When using IPv4LL, nearly always succeeds and returns an exit code of 0. In the rare case it fails, it normally means that there is a reverse ARP proxy installed which always defeats IPv4LL probing. To disable this behaviour, you can use the -L , --noipv4ll option.  

Multiple interfaces

If a list of interfaces are given on the command line, then only works with those interfaces, otherwise discovers available Ethernet interfaces that can be configured. When not limited to one interface on the command line, it is running in Master mode. The dhcpcd-ui project expects dhcpcd to be running this way.

If a single interface is given then only works for that interface and runs as a separate instance to other processes. -w , --waitip option is enabled in this instance to maintain compatibility with older versions. Using a single interface also affects the -k -N -n and -x options, where the same interface will need to be specified, as a lack of an interface will imply Master mode which this is not. To force starting in Master mode with only one interface, the -M , --master option can be used.

Interfaces are preferred by carrier, DHCP lease/IPv4LL and then lowest metric. For systems that support route metrics, each route will be tagged with the metric, otherwise changes the routes to use the interface with the same route and the lowest metric. See options below for controlling which interfaces we allow and deny through the use of patterns.

Non-ethernet interfaces and some virtual ethernet interfaces such as TAP and bridge are ignored by default, as is the FireWire interface. To work with these devices they either need to be specified on the command line, be listed in --allowinterfaces or have an interface directive in /etc/dhcpcd.conf  

Hooking into events

runs /usr/libexec/dhcpcd-run-hooks or the script specified by the -c , --script option. This script runs each script found in /usr/libexec/dhcpcd-hooks in a lexical order. The default installation supplies the scripts 01-test 02-dump 20-resolv.conf and 30-hostname You can disable each script by using the -C , --nohook option. See dhcpcd-run-hooks8 for details on how these scripts work. currently ignores the exit code of the script.

More scripts are supplied in /usr/share/dhcpcd/hooks and need to be copied to /usr/libexec/dhcpcd-hooks if you intend to use them. For example, you could install 29-lookup-hostname so that can lookup the hostname of the IP address in DNS if no hostname is given by the lease and one is not already set.  

Fine tuning

You can fine-tune the behaviour of with the following options:

-b , --background
Background immediately. This is useful for startup scripts which don't disable link messages for carrier status.
-c , --script script
Use this script instead of the default /usr/libexec/dhcpcd-run-hooks
-D , --duid [ll | lt | uuid | value ]
Use a DHCP Unique Identifier. If a system UUID is available, that will be used to create a DUID-UUID, otheriwse if persistent storage is available then a DUID-LLT (link local address + time) is generated, otherwise DUID-LL is generated (link local address). The DUID type can be hinted as an optional parameter if the file /var/lib/dhcpcd/duid does not exist. If not ll lt or uuid then value will be converted from 00:11:22:33 format. This, plus the IAID will be used as the -I , --clientid The DUID generated will be held in /var/lib/dhcpcd/duid and should not be copied to other hosts. This file also takes precedence over the above rules except for setting a value.
-d , --debug
Echo debug messages to the stderr and syslog.
-E , --lastlease
If cannot obtain a lease, then try to use the last lease acquired for the interface.
--lastleaseextend
Same as the above, but the lease will be retained even if it expires. will give it up if any other host tries to claim it for their own via ARP. This violates RFC 2131, section 3.7, which states the lease should be dropped once it has expired.
-e , --env value
Push value to the environment for use in dhcpcd-run-hooks8. For example, you can force the hostname hook to always set the hostname with -e force_hostname=YES
-g , --reconfigure
will re-apply IP address, routing and run dhcpcd-run-hooks8 for each interface. This is useful so that a 3rd party such as PPP or VPN can change the routing table and / or DNS, etc and then instruct to put things back afterwards. does not read a new configuration when this happens - you should rebind if you need that functionality.
-F , --fqdn fqdn
Requests that the DHCP server updates DNS using FQDN instead of just a hostname. Valid values for fqdn are disable, none, ptr and both. itself never does any DNS updates. encodes the FQDN hostname as specified in RFC 1035
-f , --config file
Specify a config to load instead of /etc/dhcpcd.conf always processes the config file before any command line options.
-h , --hostname hostname
Sends hostname to the DHCP server so it can be registered in DNS. If hostname is an empty string then the current system hostname is sent. If hostname is a FQDN (i.e., contains a .) then it will be encoded as such.
-I , --clientid clientid
Send the clientid If the string is of the format 01:02:03 then it is encoded as hex. For interfaces whose hardware address is longer than 8 bytes, or if the clientid is an empty string then sends a default clientid of the hardware family and the hardware address.
-i , --vendorclassid vendorclassid
Override the DHCPv4 vendorclassid field sent. The default is dhcpcd-<version>:<os>:<machine>:<platform>. For example If not set then none is sent. Some badly configured DHCP servers reject unknown vendorclassids. To work around it, try and impersonate Windows by using the MSFT vendorclassid.
-j , --logfile logfile
Writes to the specified logfile still writes to syslog(3). The logfile is reopened when receives the SIGUSR2 signal.
-k , --release [interface ]
This causes an existing process running on the interface to release its lease and de-configure the interface regardless of the -p , --persistent option. If no interface is specified then this applies to all interfaces in Master mode. If no interfaces are left running, will exit.
-l , --leasetime seconds
Request a lease time of seconds -1 represents an infinite lease time. By default does not request any lease time and leaves it in the hands of the DHCP server.
-M , --master
Start in Master mode even if only one interface specified on the command line. See the Multiple Interfaces section above.
-m , --metric metric
Metrics are used to prefer an interface over another one, lowest wins. will supply a default metic of 200 + if_nametoindex3. An extra 100 will be added for wireless interfaces.
-n , --rebind [interface ]
Notifies to reload its configuration and rebind the specified interface If no interface is specified then this applies to all interfaces in Master mode. If is not running, then it starts up as normal.
-N , --renew [interface ]
Notifies to renew existing addresses on the specified interface If no interface is specified then this applies to all interfaces in Master mode. If is not running, then it starts up as normal. Unlike the -n , --rebind option above, the configuration for is not reloaded.
-o , --option option
Request the DHCP option variable for use in /usr/libexec/dhcpcd-run-hooks
-p , --persistent
normally de-configures the interface and configuration when it exits. Sometimes, this isn't desirable if, for example, you have root mounted over NFS or SSH clients connect to this host and they need to be notified of the host shutting down. You can use this option to stop this from happening.
-r , --request address
Request the address in the DHCP DISCOVER message. There is no guarantee this is the address the DHCP server will actually give. If no address is given then the first address currently assigned to the interface is used.
-s , --inform address [/cidr [/broadcast_address ] ]
Behaves like -r , --request as above, but sends a DHCP INFORM instead of DISCOVER/REQUEST. This does not get a lease as such, just notifies the DHCP server of the address in use. You should also include the optional cidr network number in case the address is not already configured on the interface. remains running and pretends it has an infinite lease. will not de-configure the interface when it exits. If fails to contact a DHCP server then it returns a failure instead of falling back on IPv4LL.
--inform6
Performs a DHCPv6 Information Request. No address is requested or specified, but all other DHCPv6 options are allowed. This is normally performed automatically when the IPv6 Router Advertises that the client should perform this operation. This option is only needed when is not processing IPv6RA messages and the need for DHCPv6 Information Request exists.
-S , --static value
Configures a static DHCP value If you set ip_address then will not attempt to obtain a lease and just use the value for the address with an infinite lease time.

Here is an example which configures a static address, routes and DNS.

You cannot presently set static DHCPv6 values. Use the -e , --env option instead.

-t , --timeout seconds
Timeout after seconds instead of the default 30. A setting of 0 seconds causes to wait forever to get a lease. If is working on a single interface then will exit when a timeout occurs, otherwise will fork into the background.
-u , --userclass class
Tags the DHCPv4 message with the userclass class DHCP servers use this to give members of the class DHCP options other than the default, without having to know things like hardware address or hostname.
-v , --vendor code , value
Add an encapsulated vendor option. code should be between 1 and 254 inclusive. To add a raw vendor string, omit code but keep the comma. Examples.

Set the vendor option 01 with an IP address. Set the vendor option 02 with a hex code. Set the vendor option 03 with an IP address as a string. Set un-encapsulated vendor option to hello world.

--version
Display both program version and copyright information. then exits before doing any configuration.
-w
Wait for an address to be assigned before forking to the background. Does not take an argument, unlike the below option.
--waitip = [4 | 6]
Wait for an address to be assigned before forking to the background. 4 means wait for an IPv4 address to be assigned. 6 means wait for an IPv6 address to be assigned. If no argument is given, will wait for any address protocol to be assigned. It is possible to wait for more than one address protocol and will only fork to the background when all waiting conditions are satisfied.
-x , --exit [interface ]
This will signal an existing process running on the interface to exit. If no interface is specified, then the above is applied to all interfaces in Master mode. See the -p , --persistent option to control configuration persistence on exit, which is enabled by default in dhcpcd.conf5. then waits until this process has exited.
-y , --reboot seconds
Allow reboot seconds before moving to the discover phase if we have an old lease to use. Allow reboot seconds before starting fallback states from the discover phase. IPv4LL is started when the first reboot timeout is reached. The default is 5 seconds. A setting of 0 seconds causes to skip the reboot phase and go straight into discover. This has no effect on DHCPv6 other than skipping the reboot phase.

 

Restricting behaviour

will try to do as much as it can by default. However, there are sometimes situations where you don't want the things to be configured exactly how the DHCP server wants. Here are some options that deal with turning these bits off.

Note that when is restricted to a single interface then the interface also needs to be specified when asking to exit using the commandline. If the protocol is restricted as well then the protocol needs to be included with the exit instruction.

-1 , --oneshot
Exit after configuring an interface. Use the -w , --waitip option to specify which protocol(s) to configure before exiting.
-4 , --ipv4only
Configure IPv4 only.
-6 , --ipv6only
Configure IPv6 only.
-A , --noarp
Don't request or claim the address by ARP. This also disables IPv4LL.
-B , --nobackground
Don't run in the background when we acquire a lease. This is mainly useful for running under the control of another process, such as a debugger or a network manager.
-C , --nohook script
Don't run this hook script. Matches full name, or prefixed with 2 numbers optionally ending with .sh

So to stop from touching your DNS settings you would do:-

-G , --nogateway
Don't set any default routes.
-H , --xidhwaddr
Use the last four bytes of the hardware address as the DHCP xid instead of a randomly generated number.
-J , --broadcast
Instructs the DHCP server to broadcast replies back to the client. Normally this is only set for non-Ethernet interfaces, such as FireWire and InfiniBand. In most instances, will set this automatically.
-K , --nolink
Don't receive link messages for carrier status. You should only have to use this with buggy device drivers or running through a network manager.
-L , --noipv4ll
Don't use IPv4LL (aka APIPA, aka Bonjour, aka ZeroConf).
-O , --nooption option
Removes the option from the DHCP message before processing.
-P , --printpidfile
Print the pidfile will use based on commmand-line arguments to stdout.
-Q , --require option
Requires the option to be present in all DHCP messages, otherwise the message is ignored. To enforce that only responds to DHCP servers and not BOOTP servers, you can -Q dhcp_message_type
-q , --quiet
Quiet on the command line, only warnings and errors will be displayed. If this option is used another time then all console output is disabled. These messages are still logged via syslog(3).
-T , --test
On receipt of DHCP messages just call /usr/libexec/dhcpcd-run-hooks with the reason of TEST which echos the DHCP variables found in the message to the console. The interface configuration isn't touched and neither are any configuration files. The rapid_commit option is not sent in TEST mode so that the server does not lease an address. To test INFORM the interface needs to be configured with the desired address before starting .
-U , --dumplease [interface ]
Dumps the current lease for the interface to stdout. If no interface is given then all interfaces are dumped. Use the -4 or -6 flags to specify an address family. If a lease is piped in via standard input then that is dumped. In this case, specifying an address family is mandatory.
-V , --variables
Display a list of option codes, the associated variable and encoding for use in dhcpcd-run-hooks8. Variables are prefixed with new_ and old_ unless the option number is -. Variables without an option are part of the DHCP message and cannot be directly requested.
-W , --whitelist address [/cidr]
Only accept packets from address [/cidr] -X , --blacklist is ignored if -W , --whitelist is set.
-X , --blacklist address [/cidr ]
Ignore all packets from address [/cidr ]
-Z , --denyinterfaces pattern
When discovering interfaces, the interface name must not match pattern which is a space or comma separated list of patterns passed to fnmatch(3).
-z , --allowinterfaces pattern
When discovering interfaces, the interface name must match pattern which is a space or comma separated list of patterns passed to fnmatch(3). If the same interface is matched in -Z , --denyinterfaces then it is still denied.
--inactive
Don't start any interfaces other than those specified on the command line. This allows to be started in Master mode and then wait for subsequent commands to start each interface as required.
--configure
Allows to configure the system. This is the default behaviour and sets if_configured=true
--noconfigure
will not configure the system at all. This is only of use if the --script that calls at each network event configures the system instead. This is different from -T , --test mode in that it's not one shot and the only change to the environment is the addition of if_configured=false
--nodev
Don't load any /dev management modules.

 

3RDPARTY LINK MANAGEMENT

Some interfaces require configuration by 3rd parties, such as PPP or VPN. When an interface configuration in is marked as STATIC or INFORM without an address then will monitor the interface until an address is added or removed from it and act accordingly. For point to point interfaces (like PPP), a default route to its destination is automatically added to the configuration. If the point to point interface is configured for INFORM, then unicasts INFORM to the destination, otherwise it defaults to STATIC.  

NOTES

requires a Berkley Packet Filter, or BPF device on BSD based systems and a Linux Socket Filter, or LPF device on Linux based systems for all IPv4 configuration.

If restricting to a single interface and optionally address family via the command-line then all further calls to to rebind, reconfigure or exit need to include the same restrictive flags so that knows which process to signal.

Some DHCP servers implement ClientID filtering. If is replacing an in-use DHCP client then you might need to adjust the clientid option sends to match. If using a DUID in place of the ClientID, edit /var/lib/dhcpcd/duid accordingly.  

FILES

/etc/dhcpcd.conf
Configuration file for dhcpcd. If you always use the same options, put them here.
/usr/libexec/dhcpcd-run-hooks
Bourne shell script that is run to configure or de-configure an interface.
/usr/lib64/dhcpcd/dev
Linux /dev management modules.
/usr/libexec/dhcpcd-hooks
A directory containing bourne shell scripts that are run by the above script. Each script can be disabled by using the -C , --nohook option described above.
/var/lib/dhcpcd/duid
Text file that holds the DUID used to identify the host.
/var/lib/dhcpcd/secret
Text file that holds a secret key known only to the host.
/var/lib/dhcpcd/ interface -ssid .lease
The actual DHCP message sent by the server. We use this when reading the last lease and use the file's mtime as when it was issued.
/var/lib/dhcpcd/ interface -ssid .lease6
The actual DHCPv6 message sent by the server. We use this when reading the last lease and use the file's mtime as when it was issued.
/var/lib/dhcpcd/rdm_monotonic
Stores the monotonic counter used in the replay field in Authentication Options.
/var/run/dhcpcd/pid
Stores the PID of running on all interfaces.
/var/run/dhcpcd/ interface .pid
Stores the PID of running on the interface
/var/run/dhcpcd/sock
Control socket to the master daemon.
/var/run/dhcpcd/unpriv.sock
Unprivileged socket to the master daemon, only allows state retrieval.
/var/run/dhcpcd/ interface .sock
Control socket to per interface daemon.

 

SEE ALSO

fnmatch(3), if_nametoindex3, dhcpcd.conf5, resolv.conf5, dhcpcd-run-hooks8, resolvconf(8)  

STANDARDS

RFC 951, RFC 1534, RFC 2104, RFC 2131, RFC 2132, RFC 2563, RFC 2855, RFC 3004, RFC 3118, RFC 3203, RFC 3315, RFC 3361, RFC 3633, RFC 3396, RFC 3397, RFC 3442, RFC 3495, RFC 3925, RFC 3927, RFC 4039, RFC 4075, RFC 4242, RFC 4361, RFC 4390, RFC 4702, RFC 4074, RFC 4861, RFC 4833, RFC 4941, RFC 5227, RFC 5942, RFC 5969, RFC 6106, RFC 6334, RFC 6355, RFC 6603, RFC 6704, RFC 7217, RFC 7550, RFC 7844.  

AUTHORS

An Roy Marples Aq Mt roy@marples.name  

BUGS

Please report them to Lk http://roy.marples.name/projects/dhcpcd


 

Index

NAME
SYNOPSIS
DESCRIPTION
Local Link configuration
Multiple interfaces
Hooking into events
Fine tuning
Restricting behaviour
3RDPARTY LINK MANAGEMENT
NOTES
FILES
SEE ALSO
STANDARDS
AUTHORS
BUGS