Bug #9162
closed
Bogon rule confusion?
0%
Description
WAN 0.0.0.0:68 255.255.255.255:67 UDP
block bogon IPv6 networks from GIF (11000)
I am unclear how (DHCPv4 broadcast) traffic incoming on interface WAN is identified as "block bogon IPv6 networks from GIF (11000)". It is neither an "IPv6 network" (the broadcast addresses are clearly IPv4), nor seemingly on GIF (as it reports WAN and it is IPv4 traffic), but certainly not on both WAN and GIF.
(Furthermore, should this traffic be blocked? My DHCPv4 does work on WAN. I would imagine it should be blocked on GIF if IPv4 traffic can appear on GIF.)
Updated by Jim Pingle over 6 years ago
- Status changed from New to Not a Bug
All of the bogon rules get the same tracking ID.
And it's blocked because you didn't solicit that request, and you aren't running a DHCP server on WAN (I assume). When your DHCP WAN client makes a request outbound, it would be passed. That's someone else's request hitting your WAN, which is common on shared segments like cable.