[FS#389] odhcpd relay mode is blocked by firewall by default
LEDE Bugs
lede-bugs at lists.infradead.org
Tue Jan 24 13:23:24 PST 2017
The following task has a new comment added:
FS#389 - odhcpd relay mode is blocked by firewall by default
User who did this - Dave Täht (dtaht)
----------
The potential security/routing complication is that you may end up with devices acquiring prefixes your firewall doesn't know about, and will end up blocking.
as for port 547 to 547, that's "how it's done" here.
Relay, on the other hand can help if have already within your network that needs addresses, and trying to get dhcp that way... but in that case I usually disable the firewall and rely on the main box to have all the prefixes available I can use.
I will fiddle with this, however, in the first case. what would have to happen is the relay agent would have to also punch a hole in the firewall along the way. Even assuming your provider will allow multiple prefixes to be assigned.
----------
More information can be found at the following URL:
https://bugs.lede-project.org/index.php?do=details&task_id=389#comment1396
More information about the lede-bugs
mailing list