DISCOVERs from "unknown network segment" - suppress log messages?
Neufeld, Keith
Keith.Neufeld at wichita.edu
Mon Nov 28 14:49:16 UTC 2022
Just think given the above, 200 request packets/second relayed to every DHCP server on the network 8-O That’s some serious wastage of resource.
As you say, simplest to just firewall the packets and ignore it.
Tried that today, unfortunately to no avail. macOS has pf installed, but obviously pf does not / cannot block DHCP packets or the other way round, dhcpd grabs the DISCOVERs before pf rules come into effect. So I’m back to field one…
Any other ideas?
I'd be inclined to make a dhcpd.conf-not-our-subnets containing subnet declarations with no pools for all the other subnets that show up in your logs and "include" it into your dhcpd.conf .
I've had mixed success with "ignore booting" over the years (some versions of the server it works, some it doesn't and I still get logs), but I'd definitely put it into each of the subnet declarations for wishful thinking. I know you already tried it in an individual host declaration, but still worth trying in a subnet.
Lacking an "ignore unknown subnets" configuration mechanism, it seems like this might work and be next best.
--
Keith Neufeld
Director of Networking and Telecommunications
Wichita State University
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/dhcp-users/attachments/20221128/c5eec87f/attachment-0001.htm>
More information about the dhcp-users
mailing list