dhcp INFORM flooding
amindomao
amindomao at gmail.com
Wed Feb 25 20:30:26 CET 2015
Goog day again :)
According to draft-ietf-dhc-dhcpinform-clarify-06 the reply to the DHCP
Inform request should be ACK to the ciaddr if it present, even if
there is a giaddr or other addr's. FR 3.0.7 is repliing to giaddr
whatever I'm doing...
(27) Received code 1032 Id -1241645939 from 10.133.242.246:68 to
10.133.200.150:67 length 320
(27) DHCP-Opcode = Client-Message
(27) DHCP-Hardware-Type = Ethernet
(27) DHCP-Hardware-Address-Length = 6
(27) DHCP-Hop-Count = 1
(27) DHCP-Transaction-Id = 3053321357
(27) DHCP-Number-of-Seconds = 768
(27) DHCP-Flags = 0
(27) DHCP-Client-IP-Address = 10.133.44.151
(27) DHCP-Your-IP-Address = 0.0.0.0
(27) DHCP-Server-IP-Address = 0.0.0.0
(27) DHCP-Gateway-IP-Address = 10.133.242.246
(27) DHCP-Client-Hardware-Address = 98:4b:e1:b5:b1:b4
(27) DHCP-Message-Type += DHCP-Inform
(27) DHCP-Client-Identifier += 0x01984be1b5b1b4
(27) DHCP-Hostname += '\213\245\340\240-\217\212'
(27) DHCP-Vendor-Class-Identifier += 0x4d53465420352e30
(27) DHCP-Parameter-Request-List += DHCP-Subnet-Mask
(27) DHCP-Parameter-Request-List += DHCP-Domain-Name
(27) DHCP-Parameter-Request-List += DHCP-Router-Address
(27) DHCP-Parameter-Request-List += DHCP-Domain-Name-Server
(27) DHCP-Parameter-Request-List += DHCP-NETBIOS-Name-Servers
(27) DHCP-Parameter-Request-List += DHCP-NETBIOS-Node-Type
(27) DHCP-Parameter-Request-List += DHCP-NETBIOS
(27) DHCP-Parameter-Request-List += DHCP-Perform-Router-Discovery
(27) DHCP-Parameter-Request-List += DHCP-Static-Routes
(27) DHCP-Parameter-Request-List += DHCP-Classless-Static-Route
(27) DHCP-Parameter-Request-List += DHCP-Site-specific-25
(27) DHCP-Parameter-Request-List += DHCP-Vendor
(27) DHCP-Parameter-Request-List += DHCP-Site-specific-28
(27) DHCP-Relay-Agent-Information +=
0x010600040066010b020800067072cf1c79e7
Trying sub-section dhcp DHCP-Inform {...}
(27) dhcp DHCP-Inform {
(27) update reply {
(27) Packet-Dst-Port = 67
(27) DHCP-Message-Type = DHCP-Ack
(27) EXPAND %{Packet-Dst-IP-Address}
(27) --> 10.133.200.150
(27) DHCP-DHCP-Server-Identifier = 10.133.200.150
(27) DHCP-Site-specific-28 = 0x0a
(27) } # update reply = noop
(27) [ok] = ok
(27) } # dhcp DHCP-Inform = ok
(27) DHCP: Reply will be unicast to giaddr from original packet
DHCP-Opcode = Server-Message
DHCP-Hardware-Type = Ethernet
DHCP-Hardware-Address-Length = 6
DHCP-Hop-Count = 1
DHCP-Transaction-Id = 3053321357
DHCP-Number-of-Seconds = 0
DHCP-Flags = 0
DHCP-Client-IP-Address = 10.133.44.151
DHCP-Your-IP-Address = 0.0.0.0
DHCP-Server-IP-Address = 0.0.0.0
DHCP-Gateway-IP-Address = 10.133.242.246
DHCP-Client-Hardware-Address = 98:4b:e1:b5:b1:b4
DHCP-Server-Host-Name = ''
DHCP-Boot-Filename = ''
DHCP-DHCP-Server-Identifier = 10.133.200.150
DHCP-Site-specific-28 = 0x0a
Sending DHCP-Ack Id b5fdfc8d from 10.133.200.150:67 to 10.133.242.246:68
(27) Sent code 1029 Id -1241645939 from 10.133.200.150:67 to
10.133.242.246:68 length 300
(27) DHCP-Message-Type = DHCP-Ack
(27) DHCP-DHCP-Server-Identifier = 10.133.200.150
(27) DHCP-Site-specific-28 = 0x0a
(27) DHCP-Opcode = Server-Message
(27) DHCP-Hardware-Type = Ethernet
(27) DHCP-Hardware-Address-Length = 6
(27) DHCP-Hop-Count = 1
(27) DHCP-Transaction-Id = 3053321357
(27) DHCP-Flags = 0
(27) DHCP-Client-IP-Address = 10.133.44.151
(27) DHCP-Gateway-IP-Address = 10.133.242.246
(27) DHCP-Client-Hardware-Address = 98:4b:e1:b5:b1:b4
(27) DHCP-Relay-IP-Address = 10.133.242.246
(27) Finished request
More information about the Freeradius-Users
mailing list