Re: iptables vs DHCP

To: debian-devel@lists.debian.org
Subject: Re: iptables vs DHCP
From: racke@linuxia.de (Stefan Hornburg Racke)
Date: 05 Mar 2002 17:50:48 +0100
Message-id: <[🔎] 87d6yjnel3.fsf@snowflake.linuxia.de>
In-reply-to: <20020305144144.GA6644@mithrandir.codesorcery.net>
References: <02030409572804.00657@debian> <E16iCZg-0004fC-00@burken> <20020305144144.GA6644@mithrandir.codesorcery.net>

"Justin R. Miller" <incanus@codesorcery.net> writes:

> Said Harald Skoglund on Tue, Mar 05, 2002 at 11:53:39AM +0100:
> 
> > > Does anybody use iptables in a DHCP network? I want to know how
> > > would be some rule in this case...
> > 
> > iptables -A  INPUT -p UDP -s <dhcp-server> --sport 67 --dport 68 -j
> > ACCEPT
> 
> Here's what firestarter seems to add for DHCP:
> 
> ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          tcp dpts:67:68 
> ACCEPT     udp  --  0.0.0.0/0            0.0.0.0/0          udp dpts:67:68 
> 
> I suppose it could be a bit more restrictive than that...

Please note that dhcpd is not affected by iptables, because it listens
directly to the packets (like tcpdump does).

Ciao
        Racke

-- 
Think of it !

For projects and other business stuff please refer to COBOLT NetServices
(URL: http://www.cobolt.net; Email: info@cobolt.net; Phone: 0041-1-3884400)

Reply to:

Prev by Date: Re: distributable but non-free documents
Next by Date: Re: Bug#134658: ITP: lsb -- Linux Standard Base 1.1 core support package
Previous by thread: another potato-woody upgrade report
Next by thread: [홍보]네티즌이 만든 검색엔진입니다.
Index(es):
- Date
- Thread