Daniel Pittman a écrit :
So, can anyone suggest what I should do with packets that have a source address of 0.0.0.0?Junk them -- they have no real business on your network, as 0.0.0.0 isn't a valid assigned address on the live Internet.Except at least when you use DHCP on your network. DHCP clients use 0.0.0.0 as a source address when issuing DHCP requests until they get a regular address from the server.Heh. That wont help: you can't assign 0.0.0.0 to an interface in Linux, so the DHCP client uses a "packet socket" -- reading direct from the interface, bypassing the firewall.
That sounds consistant. But what about the DHCP server side ?