Public bug reported:
In /etc/ufw/before.rules there is the following rule:
# allow dhcp client to work
-A ufw-before-input -p udp --sport 67 --dport 68 -j ACCEPT
It is wrong.
Port 67 is bootps (server side) and port 68 is bootpc (client side).
The rule is inserted into ufw-before-input chain, that is part of the INPUT
chain, so it is matched against incoming packets.
Dhcp incoming packets have as source port bootpc/68 (the client) and as
destination port bootps/67 (the server).
The above rule should be correct, if it will be inserted into the OUTPUT
chain.
I provide a simple patch to correct the problem.
I'm using Intrepid/8.10 with both Kubuntu and Ubuntu Server and both have this
issue.
ufw package installed is 0.23.2.
Best Regards,
Yusef Maali
** Affects: ufw (Ubuntu)
Importance: Undecided
Status: New
--
Wrong dhcp rules for ufw
https://bugs.launchpad.net/bugs/315677
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
