[Bug 730] DHCP request (and other?) traffic bypasses iptables/netfilter

bugzilla-daemon at bugzilla.netfilter.org bugzilla-daemon at bugzilla.netfilter.org
Wed Jul 27 03:15:46 CEST 2011


http://bugzilla.netfilter.org/show_bug.cgi?id=730





--- Comment #3 from Robert Lange <rcl24 at drexel.edu>  2011-07-27 03:15:45 ---
I just confirmed this bug on a brand new install of Ubuntu 11.04 in a
clean-room environment and a default UFW/iptables ruleset.  This bug exists,
even if the 1st rule in the INPUT chain is an unconditional drop of all UDP
packets to destination port 67.  Syslog trace confirms that the firewall drops
the packet, but dhcpd receives the packet anyway and processes it.

By the way, I use isc-dhcp-server 4.1.1-P1-15ubuntu9, which is based on the ISC
DHCP server.


-- 
Configure bugmail: http://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
You are watching all bug changes.



More information about the netfilter-buglog mailing list