From owner-freebsd-questions  Wed Feb 26 12:11:28 2003
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 3D0C737B401
	for <questions@freebsd.org>; Wed, 26 Feb 2003 12:11:27 -0800 (PST)
Received: from famine.e-raist.com (famine.e-raist.com [65.100.40.90])
	by mx1.FreeBSD.org (Postfix) with ESMTP id E8E5443FBF
	for <questions@freebsd.org>; Wed, 26 Feb 2003 12:11:25 -0800 (PST)
	(envelope-from aburke@nullplusone.com)
Received: from thebe (evrtwa1-ar10-4-40-153-150.evrtwa1.dsl-verizon.net [4.40.153.150])
	(authenticated bits=0)
	by famine.e-raist.com (8.12.2/8.12.2) with ESMTP id h1QKBCb2085110;
	Wed, 26 Feb 2003 12:11:15 -0800 (PST)
From: "Aaron Burke" <aburke@nullplusone.com>
To: <bsdaemon@eudoramail.com>, <questions@freebsd.org>
Subject: RE: ipfw troubleshooting (was ipfw rule placement)
Date: Wed, 26 Feb 2003 12:11:12 -0800
Message-ID: <AMEMKJNMFLJCJDLFIEDBMEKMCIAA.aburke@nullplusone.com>
MIME-Version: 1.0
Content-Type: text/plain;
	charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0)
In-Reply-To: <JPJOKBAMMBNIHBAA@whowhere.com>
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Importance: Normal
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

(snip)

> My firewall log is flooded with this message:
> 
> [date and time]churgeon /kernel: ipfw: Deny UDP 10.142.240.1:67 
> 255.255.255.255:68 in via ed1
Ports 67 and 68 are used by DHCP. If you get your IP address
from a DHCP server, or you are serving or using DHCP on this
interface, you will need to leave them open.

> 
> When I run sockstat, I see that dhclient is listening for udp 
> packets on port 68:
> 
> root   dhclient    62  4  udp4   *:68         *:*
> 
> Attached is my ipfw ruleset.  I'd like to know if I need to allow 
> these packets (if they're required by dhclient, etc.).
> Just in case, I've attached natd.conf and rc.conf, as well.  
> Thanks for any help.
Thats what we are here for.


> ---
> Joshua Lokken
> FreeBSD:  The Power to Serve!
> bsdaemon@eudoramail.com
> -------------------------------->



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message