hostagent usernet binds UDP port 68 to all interfaces, breaks host DHCP

[whos-on-first]

Description

Description

Lima hostagent binds to *:68 (UDP bootpc) which intercepts DHCP OFFER
packets meant for the host's real network interface (WiFi), breaking
host DHCP lease renewal.

Lima version

limactl version 2.0.3

Environment

• macOS (Intel Mac, 2020)
• vmType: qemu
• hostResolver.enabled: false (also tried true, no difference)

Evidence

$ sudo lsof -i :68
COMMAND   PID  USER   FD   TYPE  DEVICE SIZE/OFF NODE NAME
limactl 39640 user   11u  IPv6  ...     0t0      UDP  *:bootpc

Effect

DHCP server logs show Mac stuck in DISCOVER/OFFER loop:

• Mac sends DHCPDISCOVER
• Server responds with DHCPOFFER
• Mac never sends DHCPREQUEST (Lima intercepts the OFFER)
• Loop repeats 10-50 times over several minutes
• Occasionally completes by chance

Stopping Lima immediately restores normal DHCP operation.

Expected behavior

The usernet DHCP server should bind only to the VM's virtual network
interface, not *:68 on all host interfaces.

Related

This appears to be in gvisor-tap-vsock's DHCP server binding behavior.

[unsuman]

Unable to repro this!

• Macbook Air M1
• macOS Tahoe 26.1
• Lima version: latest

Using:

vmType: qemu
networks:
  - lima: user-v2

Can you share your config? Could this be architecture-specific since you use Intel Mac?