I recently setup a spare box (sasami) to provide some local services
(dns, dhcp, email, squid, etc.) for a home network, as well as acting
as firewall and router. It's running a fairly minimal woody
installation, except for shorewall 1.4.8.stable-2 which was backported
from sid.
I've configured dhcpd to provide static IPs for all of the permanent
boxes, as well as a pool of dynamic addresses. This seems to be
working more-or-less as expected... known systems are getting the
proper IPs, and others are being assigned one dynamically.
Periodically, however, I'm seeing the following entry in my firewall
logs.
Jan 10 13:49:39 sasami kernel: Shorewall:all2all:REJECT:IN= OUT=eth1
SRC=192.168.0.1 DST=192.168.0.3 LEN=328 TOS=0x00 PREC=0x00 TTL=64 ID=16480 DF
PROTO=UDP SPT=67 DPT=68 LEN=308
It appears that sasami is trying to send bootp packets to one of the
internal boxes. As far as I can see, tho, dhcpd is configured for dhcp
only... I've included my dhcpd.conf below. Do I need to do something
special to turn off bootp? Or is this normal behaviour, which I should
allow through the firewall?
Thanx!
$ egrep -v "^( *#|$)" /etc/dhcp3/dhcpd.conf
ddns-update-style none;
default-lease-time 604800;
max-lease-time 1209600;
option domain-name "localdomain";
authoritative;
log-facility local7;
subnet 192.168.0.0 netmask 255.255.255.0 {
option domain-name-servers sasami.localdomain;
option routers sasami.localdomain;
pool {
range 192.168.0.128 192.168.0.254;
default-lease-time 7200;
max-lease-time 14400;
allow unknown clients;
}
}
host yggdrasil {
hardware ethernet 00:07:e9:87:da:e3;
fixed-address 192.168.0.2;
option host-name "yggdrasil";
}
host snark {
hardware ethernet 00:0d:88:88:61:96;
fixed-address 192.168.0.3;
option host-name "snark";
}
host wap {
hardware ethernet 00:0d:88:9d:70:f6;
fixed-address 192.168.0.50;
option host-name "wap";
}
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
