Вопрос, кто или что использует 67 и 68 порты?
Есть машинка - роутер. на ней фри 6.3,
1й интерфейс в инет - там DHCP прова
2ой интерфейс в локалку.
Правила файрвола такие:
Код: Выделить всё
ipfw show
00100 0 0 deny ip from any to any not verrevpath
00200 0 0 deny ip from any to any frag
00300 0 0 deny ip from any to 127.0.0.0/8
00400 0 0 deny ip from 127.0.0.0/8 to any
00500 0 0 allow ip from any to any via lo0
00600 2589 279635 allow ip from 10.0.1.0/24 to 10.0.1.0/24 via rl0
00700 9800 1186216 allow ip from 10.0.1.0/24 to any in via rl0
00800 10239 7059422 allow ip from any to 10.0.1.0/24 out via rl0
00900 9758 1172692 divert 8668 ip from 10.0.1.0/24 to any out via rl1
01000 10252 7061061 divert 8668 ip from any to me in via rl1
01100 9771 1173562 allow ip from me to any out via rl1
01200 10239 7059422 allow ip from any to 10.0.1.0/24 in via rl1
01300 1 74 allow tcp from any to me in via rl1 established
01400 0 0 allow udp from any to me dst-port 53 in via rl1
01500 12 1565 allow udp from any 53 to me in via rl1
01600 0 0 allow icmp from any to me in via rl1
01700 24 7920 deny log logamount 50 ip from any to any
65535 15 1330 deny ip from any to any
Код: Выделить всё
Feb 4 02:02:46 poisk-nika kernel: ipfw: 1700 Deny UDP 10.4.0.1:67 255.255.255.255:68 in via rl1
Feb 4 02:03:37 poisk-nika kernel: ipfw: 1700 Deny UDP 10.4.0.4:67 255.255.255.255:68 in via rl1
Feb 4 02:03:39 poisk-nika kernel: ipfw: 1700 Deny UDP 10.4.0.4:67 255.255.255.255:68 in via rl1
Feb 4 02:04:42 poisk-nika kernel: ipfw: 1700 Deny UDP 10.4.0.1:67 255.255.255.255:68 in via rl1
Feb 4 02:04:42 poisk-nika kernel: ipfw: 1700 Deny UDP 10.4.0.1:67 255.255.255.255:68 in via rl1
Feb 4 02:06:42 poisk-nika last message repeated 4 times
Feb 4 02:12:39 poisk-nika last message repeated 6 times
Feb 4 02:13:10 poisk-nika kernel: ipfw: 1700 Deny UDP 10.4.0.4:67 255.255.255.255:68 in via rl1
Feb 4 02:13:12 poisk-nika kernel: ipfw: 1700 Deny UDP 10.4.0.4:67 255.255.255.255:68 in via rl1
Feb 4 02:14:08 poisk-nika kernel: ipfw: 1700 Deny UDP 10.4.0.1:67 255.255.255.255:68 in via rl1