Gargoyle Forum

A forum to discuss the Gargoyle web interface for Openwrt
https://www.gargoyle-router.com/phpbb/

dhcp spoofing

https://www.gargoyle-router.com/phpbb/viewtopic.php?t=7362

Page 1 of 1

dhcp spoofing

Posted: Wed Jul 29, 2015 9:09 pm
by nano
Hello, I'm using the newest Gargoyle.
When I run dnsmasq (dhcp server) on my workstation, I can make DoS attack, because all clients in network will use my server. What is more, I'm afraid, there is possibility of making MITM attack.

What do you think about making firewall rules to block all dhcp servers other than router's. It's useful to temporarily run secondary server, therefore some customization like checkbox would be great.

Re: dhcp spoofing

Posted: Wed Jul 29, 2015 10:26 pm
by Lantis
Man in the middle on your local network?
If look at changing your locks before your firewall.
:P

Re: dhcp spoofing

Posted: Thu Jul 30, 2015 3:13 am
by nworbnhoj
Lantis wrote:Man in the middle on your local network?
If look at changing your locks before your firewall.
:P
:P
I use a Guest network for my invited friends who bring devices with unfriendly apps.

Re: dhcp spoofing

Posted: Fri Jul 31, 2015 12:47 pm
by nano
Ok, guest network is some solution for unknown hosts, but there still might be some misconfiguration in known hosts, that can shut down entire network. It's just silly, to leave it as it is.

Re: dhcp spoofing

Posted: Fri Jul 31, 2015 1:01 pm
by nano
I don't have a change to test it, so I'm asking. Is this code an solution for the problem?

Code: Select all

# added to  /etc/config/firewall
config rule
        option name 'no-lan-dhcp-offers'
        option src 'lan'
        option dest 'lan'
        option proto 'udp'
        option dest_port '68'
        option target 'REJECT'
        option family 'ipv4'
All times are UTC-04:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited