[NTLUG:Discuss] DHCP Server question
Bug Hunter
bughuntr at one.ctelcom.net
Mon Dec 10 14:15:40 CST 2001
which version of dhcp?
earlier versions did not bind to the correct ethernet port per the
config file setting. The current version is supposed to handle that
correctly.
On Mon, 10 Dec 2001, Courtney Grimland wrote:
> My Linux firewall/router:
>
> I run 'dhcpd eth1' where eth1 is the internal
> interface. All is good so far, but...
>
> ...why does 'nmap -sU x.x.x.x' (where x.x.x.x is my
> external address) show that UDP port 67 (dhcp server)
> is open, and 'lsof -i UDP:67' shows that dhcpd is the
> culprit? I'm explicitly telling the server which
> interface to use, and it still opens a port on the
> wrong one.
>
> The reason I bring this up is in my firewall log, I
> get a packet every few minutes aimed at my UDP port 67
> from someone else's port 68 (I don't have the origin's
> ip address right now as I'm at work). Is this ISP
> looking for people running rogue dhcp servers? I
> don't understand why my port is even open.
More information about the Discuss
mailing list