[NTLUG:Discuss] DHCP Server question
Courtney Grimland
cgrimland at yahoo.com
Mon Dec 10 13:26:04 CST 2001
My Linux firewall/router:
I run 'dhcpd eth1' where eth1 is the internal
interface. All is good so far, but...
...why does 'nmap -sU x.x.x.x' (where x.x.x.x is my
external address) show that UDP port 67 (dhcp server)
is open, and 'lsof -i UDP:67' shows that dhcpd is the
culprit? I'm explicitly telling the server which
interface to use, and it still opens a port on the
wrong one.
The reason I bring this up is in my firewall log, I
get a packet every few minutes aimed at my UDP port 67
from someone else's port 68 (I don't have the origin's
ip address right now as I'm at work). Is this ISP
looking for people running rogue dhcp servers? I
don't understand why my port is even open.
__________________________________________________
Do You Yahoo!?
Send your FREE holiday greetings online!
http://greetings.yahoo.com
More information about the Discuss
mailing list