[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: DHCP not blocked

To: misc@openbsd.org
Subject: Re: DHCP not blocked
From: Camiel Dobbelaar <cd@sentia.nl>
Date: Fri, 6 Feb 2004 09:36:20 +0100 (CET)
References: <2FC1F75452FDB9478BF338D7B6E96AC3038BE5A9@cof110avexu4.global.avaya.com>

On Thu, 5 Feb 2004, Pillai, Gopakumar (Gopu) wrote:
> I have a host with two interfaces fxp0 and fxp1. On the fxp1 side I have
> a DHCP Server and on fxp0 side I have a DHCP client.
> 
> I have the following rules on fxp0
> 
> block in quick on fxp0 all
> block out quick on fxp0 all
> 
> The DHCP client should not be getting an IP from the DHCP server, but it
> does, Why and How?

dhclient (like tcpdump) uses bpf and gets packets before pf filters them.

References:
- DHCP not blocked
  - From: "Pillai, Gopakumar (Gopu)" <gopu@avaya.com>

Prev by Date: IPSec / FreeSWAN (linux) - Question 'bout VPN
Next by Date: OpenBSD and SmartCards...
Prev by thread: Re: DHCP not blocked
Next by thread: Re: DHCP not blocked
Index(es):
- Date
- Thread