Hi all,
I'd cut a long story short, I need (for lack of better solution) to restart an LTE router everyday. Without this, latencies just gets higher and higher and higher up until it's not operating no more. I couldn't yet nail the main issue down.
That LTE WAN uplink is seated within a dedicated VLAN on a DMZ switch (along a 2nd wan uplink on it's own dedicated VLAN etc etc..)
My issue at OPNsense was that once the device would be auto-rebooted once a day, that VLAN interface ip & gateway wouldn't be updated at the OPNsense level (the LTE router permit's a so called "passthrough" feature where a backend device would get the LTE bond IP address, in my case OPNsense, handy..).
So here is what I've cobbled, please read carefully what the main script does before blindly copy/paste/run.
The main script: (saved in /usr/local/bin/dhcp-renew)
#!/bin/sh
set -e
ENABLE_LOGGING=true
INTERFACE=$1
# Logging function
log_message() {
if [ "$ENABLE_LOGGING" = "true" ]; then
echo "$(date +%Y-%m-%d.%H:%M:%S) - $1" >> /var/log/dhcp-renew.log
fi
}
# Function DHCP Renew
dhcp_renew() {
/sbin/ifconfig $INTERFACE down
/sbin/ifconfig $INTERFACE up
/bin/rm -f /var/db/dhclient.leases.$INTERFACE
/sbin/dhclient $INTERFACE
}
# Function Renew WAN
renew_wan() {
/usr/local/etc/rc.newwanip $INTERFACE
/usr/local/sbin/configctl interface reconfigure $(/sbin/ifconfig $INTERFACE | grep description | awk '{print $3}' | tr -d '()')
}
# Main script logic
main() {
curtime=$(date +%s)
uptime=$(sysctl kern.boottime | awk -F'sec = ' '{print $2}' | awk -F',' '{print $1}')
uptime=$((curtime - uptime))
log_message "========================"
log_message "==== Process START ====="
log_message "Interface given as parameter : '$INTERFACE'"
log_message "System uptime: $uptime seconds"
dhcp_renew
log_message "DHCP Renew on interface '$INTERFACE' : DONE"
renew_wan
log_message "NEWWANIP & Interface Reconfigure on interface '$INTERFACE' : DONE"
log_message "==== Process END ====="
}
# Run the main script logic
main
Making it executable:
chmod +x /usr/local/bin/dhcp-renew
The actions.d companion script: (saved in /usr/local/opnsense/service/conf/actions.d/actions_dhcp_renew.conf)
[start]
command:/usr/local/bin/dhcp-renew
parameters:%s
type:script
message:DHCP-RENEW on interface
description:DHCP-RENEW on specified interface
Restarting the configd service is needed:
service configd restart
And a quick log extract: (/var/log/dhcp-renew.log)
2025-12-08.12:33:00 - ========================
2025-12-08.12:33:00 - ==== Process START =====
2025-12-08.12:33:00 - Interface given as parameter : 'vlan0.8.888'
2025-12-08.12:33:00 - System uptime: 309327 seconds
2025-12-08.12:33:00 - DHCP Renew on interface 'vlan0.8.888' : DONE
2025-12-08.12:33:06 - NEWWANIP & Interface Reconfigure on interface 'vlan0.8.888' : DONE
2025-12-08.12:33:06 - ==== Process END =====
You can then edit your System>Settings>Cron jobs and schedule a specific interface forced renewal:
os-dhcp-renew.png
Since I've put this in place, my specific interface gateway is now correctly set on OPNsense after each router restart and it's almost transparent if not for the router reboot cycle needed time. As said, the main issue has nothing to do with OPNsense itself. Finally, in my case, I'm also cycling any WireGuard instances that may use this path after the forced daily renewal.
Please do not hesitate to correct any mistake or provide any insight.
I.E:
- I did not took the needed time to completely understand what this does exactly : /usr/local/etc/rc.newwanip
- I'm not sure that the /usr/local/bin path may be advisable for user made scripts.
Hope this may help,
Cheers,
m.