Dear devs, I came across a limitation which I would like to request to be implemented:
In dhclient.conf the reject declaration only accepts a single IP address, and it would be great if we could define more than one by comma separation and even ranges in CIDR notation like in Linux. I wanted to configure this after a rogue DHCP server leased an IP address to my OpenBSD box. I think this would be a nice way to make OpenBSD more robust and secure. >From OpenBSD man pages: https://man.openbsd.org/OpenBSD-6.4/dhclient.conf.5 reject ip-address; >From Linux man pages: https://linux.die.net/man/5/dhclient.conf reject cidr-ip-address [, ... cidr-ip-address ] ; BRs /Andras
