[NTLUG:Discuss] DHCP Server question
Jack Snodgrass
idiotboy at cybermail.net
Mon Dec 10 13:56:47 CST 2001
I don't have nmap. netstat -na shows that dhcpd listens on 0.0.0.0 ( all
addresses ) and not
the specified address for the interface. It ignores request to the
non-specified interface so
it's working like it says that it does.... it just works differently than
you think it should.
jack
----- Original Message -----
From: "Courtney Grimland" <cgrimland at yahoo.com>
To: <discuss at ntlug.org>
Sent: Monday, December 10, 2001 1:26 PM
Subject: [NTLUG:Discuss] DHCP Server question
> My Linux firewall/router:
>
> I run 'dhcpd eth1' where eth1 is the internal
> interface. All is good so far, but...
>
> ...why does 'nmap -sU x.x.x.x' (where x.x.x.x is my
> external address) show that UDP port 67 (dhcp server)
> is open, and 'lsof -i UDP:67' shows that dhcpd is the
> culprit? I'm explicitly telling the server which
> interface to use, and it still opens a port on the
> wrong one.
>
> The reason I bring this up is in my firewall log, I
> get a packet every few minutes aimed at my UDP port 67
> from someone else's port 68 (I don't have the origin's
> ip address right now as I'm at work). Is this ISP
> looking for people running rogue dhcp servers? I
> don't understand why my port is even open.
>
> __________________________________________________
> Do You Yahoo!?
> Send your FREE holiday greetings online!
> http://greetings.yahoo.com
>
> _______________________________________________
> http://www.ntlug.org/mailman/listinfo/discuss
>
More information about the Discuss
mailing list