[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

Do I have somthing to worry about?

Posted on 2001-08-02
1
Medium Priority
?
138 Views
Last Modified: 2010-04-13
I'm running W2K advance server with Mcafee firewall software.  I found this line in the firewall logs was wondering if I need to be worried about it:

2001/08/02 12:14:41 AM: SERVICES port 68 (Bootp client) -  listening , lasting 61 second(s), 1200 bytes sent, 0 bytes received.

In my server logs, I found 12 different countries trying to get /default.ida.  I have all patches and hot fixes applied.  Any clues?

Also, how do I close port 68?
Stephen G
0
Comment
Question by:StephenG
1 Comment
 
LVL 5

Accepted Solution

by:
Draak earned 300 total points
ID: 6343812
there are two ports used for the bootp process on your server:
port 67 is used for the server requests. This means that any client requests for IP address from a dhcpserver enter that dhcpserver through port 67.

port 68 id used for the client requests. This means that if the Server gets an ip address from a dhcpserver, it will send the request through port 68 on to the network to a dhcpserver.

If your server receives an ip address from an ISP for the internet connection, then it sends this request for the ip address through port 68 to the dhcpserver of your ISP. If you close the port, then the server is unable to recieve an internet address, thus cutting your internet connection.

If you do not have any machine that need to receive an ip address  from a dhcpserver from across your firewall, you may close the port 68 and even the port 67.

closing port 67 prevents any client to send a request to your network from across the firewall.

closing port 68 prevents any of your client to send a request for ip to a dhcpserver acroos the firewall.

best regards

draak
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
If anyone asked you to network diagram of the internet, it was drawn in the form of a fluffy cloud which further became known as cloud computing. Popularly cloud computing is defined as workloads that run over the internet in a commercial provider’s…
Is your data getting by on basic protection measures? In today’s climate of debilitating malware and ransomware—like WannaCry—that may not be enough. You need to establish more than basics, like a recovery plan that protects both data and endpoints.…
As many of you are aware about Scanpst.exe utility which is owned by Microsoft itself to repair inaccessible or damaged PST files, but the question is do you really think Scanpst.exe is capable to repair all sorts of PST related corruption issues?
Suggested Courses
Course of the Month20 days, 5 hours left to enroll

873 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question