[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: blocking DHCP requests



On Sat, 2 Oct 2004, [ISO-8859-1] Björn Ketelaars wrote:
> I'm trying to block wireless clients in using my DHCP-server. The
> problem is that these clients are still able to retrieve IP-information
> from the DHCP-server. If I understand the hereby included pf.conf,
> everything (except UDP domain and TCP ssh) is blocked into entering
> $wir_if (which comes from $wir_if:network). Doesn't this also mean that
> an DHCP-request is blocked? Any suggestions in what I'm missing?
dhcpd (like tcpdump) uses bpf/libpcap, which gets a copy of the network 
data before pf does.  This means you cannot use pf to filter what gets to 
dhcpd.
--
Cam