PacketFence
Bug Tracking System

View Issue Details Jump to Notes ] Issue History ] Print ]
IDProjectCategoryView StatusDate SubmittedLast Update
0001151PacketFencedhcppublic2011-01-12 13:332011-12-30 23:38
Reporterobilodeau 
Assigned Toobilodeau 
PrioritynormalSeverityfeatureReproducibilityN/A
StatusclosedResolutionfixed 
PlatformOSOS Version
Product Version 
Target Version3.1.0Fixed in Version3.1.0 
Summary0001151: Rogue DHCP detection with IP Helpers
DescriptionCurrent rogue DHCP detection relies on analysis of the DHCP server-initiated packets. In an IP Helper setup we never get these packets.

After reading RFC 2131, I realize that we could detect rogue DHCP servers in this context.

"The client broadcasts a DHCPREQUEST message that MUST include the 'server identifier' option to 
indicate which server it has selected, and that MAY include other options specifying desired configuration 
values."


If the server identifier is not an allowed DHCP server, report as rogue.
TagsNo tags attached.
fixed in git revision
fixed in mtn revision6c01f73ad854eeb91e96ccefbf08dc29a2f8f675
Attached Files

- Relationships

-  Notes
(0002465)
obilodeau (reporter)
2011-11-25 14:27

Feature added in revno: 11cda3dfd55678189c879365e26e31d63cf326a1

Right now though if the IP of the rogue DHCP is not known to packetfence, we can do nothing about it except report it. I'll be experimenting with option 82 to see if we can do better in that regard.
(0002466)
obilodeau (reporter)
2011-11-28 13:26

Option 82 didn't help (at least on the 3550).

Every bits are committed as of revno: 6c01f73ad854eeb91e96ccefbf08dc29a2f8f675
(0002500)
obilodeau (reporter)
2011-12-30 23:37

Released in version 3.1.0.

- Issue History
Date Modified Username Field Change
2011-01-12 13:33 obilodeau New Issue
2011-03-03 15:16 obilodeau Target Version 2.1.0 => +1
2011-03-03 15:18 obilodeau Target Version +1 => +2
2011-11-22 12:13 obilodeau Status new => assigned
2011-11-22 12:13 obilodeau Assigned To => obilodeau
2011-11-25 14:27 obilodeau Note Added: 0002465
2011-11-28 13:26 obilodeau mtn revision => 6c01f73ad854eeb91e96ccefbf08dc29a2f8f675
2011-11-28 13:26 obilodeau Note Added: 0002466
2011-11-28 13:26 obilodeau Status assigned => resolved
2011-11-28 13:26 obilodeau Fixed in Version => trunk
2011-11-28 13:26 obilodeau Resolution open => fixed
2011-12-30 23:28 obilodeau Fixed in Version trunk => 3.1.0
2011-12-30 23:37 obilodeau Note Added: 0002500
2011-12-30 23:37 obilodeau Status resolved => closed
2011-12-30 23:38 obilodeau Target Version +2 => 3.1.0


Copyright © 2000 - 2012 MantisBT Group
Powered by Mantis Bugtracker