From owner-freebsd-net@FreeBSD.ORG Thu Jun 4 16:54:38 2015 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 7E4A86D1 for ; Thu, 4 Jun 2015 16:54:38 +0000 (UTC) (envelope-from kpaasial@gmail.com) Received: from mail-lb0-x22d.google.com (mail-lb0-x22d.google.com [IPv6:2a00:1450:4010:c04::22d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 0456017D4 for ; Thu, 4 Jun 2015 16:54:38 +0000 (UTC) (envelope-from kpaasial@gmail.com) Received: by lbcmx3 with SMTP id mx3so31079733lbc.1 for ; Thu, 04 Jun 2015 09:54:35 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; bh=LqCg4tcSDly/4XYnEuEW+jXXVJX5ZwiVfeUEl0EntHw=; b=UgHUFLiMfT5vSFjEGvh25BHB/ZwyVE+HLt2McTWUF5JK63AfRn+lzhVD32EVZCfxFC WLzQY8LQQ/75NE2SUPKEGi0doNN33sBGpOW12kb/xKGnsmCkvlTVCrp0msV2lOfoUcQy MWLQV1Wgnz6YP4eQxDyO9vM0sc2wIrswEzQu5+oJx49M9UJKmnrJoPLpXAWQ9/coc/Qg MgKkbHksgLfRBvLuC312bU5NzUPzUGKt3/sUAdIsJp6Dn+a3Tj6icT4RJpt5NOOgqlvS kpgq3mGjkIqPTauS/9D40v6zVxDdC/kBtjeAP2Y14BMcftM9uFuBASHHIY/kbweG+OTV wX4Q== MIME-Version: 1.0 X-Received: by 10.152.203.162 with SMTP id kr2mr38744602lac.68.1433436875883; Thu, 04 Jun 2015 09:54:35 -0700 (PDT) Received: by 10.152.137.193 with HTTP; Thu, 4 Jun 2015 09:54:35 -0700 (PDT) In-Reply-To: <20150604073100.GA2012@c720-r276659> References: <20150604073100.GA2012@c720-r276659> Date: Thu, 4 Jun 2015 19:54:35 +0300 Message-ID: Subject: Re: unknown UDP caused by dhclient From: Kimmo Paasiala To: Matthias Apitz , FreeBSD Net Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 04 Jun 2015 16:54:38 -0000 On Thu, Jun 4, 2015 at 10:31 AM, Matthias Apitz wrote: > > Hello, > > I'm seeing in my firewall log unknow UDP traffic which is caused by the > running dhclient: > > Jun 3 21:57:02 c720-r276659 dhclient[2601]: send_packet: Network is unre= achable > Jun 3 21:57:02 c720-r276659 ipmon[2368]: 21:57:02.751350 ue0 @0:82 b 10.= 42.0.83,68 -> 10.42.0.1,67 PR udp len 20 328 OUT > Jun 3 21:58:38 c720-r276659 dhclient[2601]: send_packet: Network is unre= achable > Jun 3 21:58:38 c720-r276659 ipmon[2368]: 21:58:38.753118 ue0 @0:82 b 10.= 42.0.83,68 -> 10.42.0.1,67 PR udp len 20 328 OUT > > What is my dhclient asking from the router 10.42.0.1? Should I open the > ipfilter for this? > > The system is r276659. > > Thanks > > matthias > -- > Matthias Apitz, guru@unixarea.de, http://www.unixarea.de/ +49-170-4527211= +49-176-38902045 > "Wenn der Mensch von den Umst=C3=A4nden gebildet wird, so mu=C3=9F man di= e Umst=C3=A4nde menschlich bilden." > "Si el hombre es formado por las circunstancias entonces es necesario for= mar humanamente > las circunstancias", Karl Marx in Die heilige Familie / La sagrada famili= a (MEW 2, 138) That is how a DHCP client ask for lease renewal from the DHCP server, you should allow the traffic if the interface in question is configured to use DHCP. -Kimmo