[email protected]
[Top] [All Lists]

Bug#305510: marked as forwarded (dhclient ignores firewall rules)

Subject: Bug#305510: marked as forwarded dhclient ignores firewall rules
From: Debian Bug Tracking System
Date: Mon, 19 Sep 2005 15:33:11 -0700
Your message dated Tue, 20 Sep 2005 08:24:34 +1000
with message-id <[email protected]>
has caused the Debian Bug report #305510,
regarding dhclient ignores firewall rules
to be marked as having been forwarded to the upstream software
author(s) [email protected]

(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere.  Please contact me immediately.)

Debian bug tracking system administrator
(administrator, Debian Bugs database)

Received: (at 305510-forwarded) by bugs.debian.org; 19 Sep 2005 22:24:43 +0000
>From [email protected] Mon Sep 19 15:24:43 2005
Return-path: <[email protected]>
Received: from dsl-202-45-99-8.act.netspace.net.au (caesar.andrew.net.au) 
        by spohr.debian.org with esmtp (Exim 3.36 1 (Debian))
        id 1EHU43-00079q-00; Mon, 19 Sep 2005 15:24:43 -0700
Received: from caesar.andrew.net.au (localhost [])
        by caesar.andrew.net.au (8.13.4/8.13.4/Debian-3) with ESMTP id 
        (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT);
        Tue, 20 Sep 2005 08:24:36 +1000
Received: (from [email protected])
        by caesar.andrew.net.au (8.13.4/8.13.4/Submit) id j8JMOYbT029429;
        Tue, 20 Sep 2005 08:24:34 +1000
Date: Tue, 20 Sep 2005 08:24:34 +1000
From: Andrew Pollock <[email protected]>
To: [email protected]
Cc: Martin Samuelsson <[email protected]>,
        [email protected]
Subject: dhclient ignores firewall rules on Linux
Message-ID: <[email protected]>
References: <[email protected]>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <[email protected]>
User-Agent: Mutt/1.5.9i
X-Scanned-By: MIMEDefang 2.51 on
Delivered-To: [email protected]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 
        (1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-3.0 required=4.0 tests=BAYES_00 autolearn=no 


Anyone care to comment on this bug report?

Please maintain the Cc line so that the original submitter and our BTS
is kept in the loop.



On Wed, Apr 20, 2005 at 01:16:40PM +0200, Martin Samuelsson wrote:
> Package: dhcp3-client
> Version: 3.0.1-1
> This is not reported againt the latest version, but the debian changelog
> lists nothing relevant to the problem.
> After running:
> leka# iptables --append INPUT --source -j DROP
> leka# iptables --append INPUT --match mac --mac-source 00:30:54:40:00:40 -j 
> I would expect not to get replies from a bogus client setup as a server.
> However they still reach dhclient and assigns me an useless address.
> Both the packets and bytes counters increase, so surely the kernel do
> actually drop them.
> (Yes I told the network admin yesterday and gave him full information,
> but it is still around somewhere. The network being wireless makes it a
> bit tricky to figure out who is the criminal)
> The reason can be read in the README, I assume this is it:
> "
> This isn't generally a problem on Linux 2.2 and later kernels, since we
> completely bypass the Linux IP stack,
> "
> When a piece of software completely bypasses it's operating system it
> should still behave as it didn't. In this case apply those firewall
> rules on incoming packets.
> Thanks,
> --
> /Martin

To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]

<Prev in Thread] Current Thread [Next in Thread>
  • Bug#305510: marked as forwarded (dhclient ignores firewall rules), Debian Bug Tracking System <=