On Thu, Mar 21, 2002 at 10:31:02AM +0000, Karl E. Jorgensen wrote: > The firewalling I have in place only allows incoming connections for > ssh. UDP is locked down so only DNS works there. And by mistake (fixed now), > it also allowed incoming DHCP requests from the internet.
Careful here. The first DHCP request from a freshly booted machine doesn't carry a local IP address (but either 0.0.0.0 or random crap). So make sure you don't filter by IP address, but by interface at most. Daniel.
