Re: DHCP and iptables

From: Arnd Bergmann
Date: Mon Oct 12 2009 - 12:49:16 EST

Next message: Éric Piel: "Re: [REGRESSION] "bind" a device to a driver doesn't not work anymore"
Previous message: Alessandro Zummo: "Re: [PATCH 1/2] rtc-ds1511: Fix races around device registration"
In reply to: lkml: "DHCP and iptables"
Next in thread: Mathias Kub: "Re: DHCP and iptables"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Monday 12 October 2009, lkml@xxxxxxxxx wrote:
> The last few days I have been wondering about the fact, that I get an IP
> address via
> DHCP if all chains at iptables are set to drop and no accept rules set.
>
> Does this happen on purpose?

DHCP is an ethernet protocol, not an IP protocol, so you have to use
ebtables instead of iptables to filter it.

Arnd <><
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Éric Piel: "Re: [REGRESSION] "bind" a device to a driver doesn't not work anymore"
Previous message: Alessandro Zummo: "Re: [PATCH 1/2] rtc-ds1511: Fix races around device registration"
In reply to: lkml: "DHCP and iptables"
Next in thread: Mathias Kub: "Re: DHCP and iptables"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]