Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Why DHCP client listens on port 68?

Tags:

network-programming

dhcp

If suppose client does not listen on 68 port,when DHCP server receives the request, it can send it to the address from where it received request (with ephemeral port chosen by client at time of sending), then why does protocol specifies client to be listening on port 68?

like image 354
avd Avatar asked Nov 24 '09 15:11

avd

People also ask

Why is port 68 open?

So, basically, it is normal that port 68 will be "open" as long as your system sees itself as a DHCP Client, i.e. as long as networking is active. It is not really the task of a specific program or protocol to "open" or "close" a port, or to control the traffic going through it.

Which port number is used by DHCP for listening the client?

The DHCP employs a connectionless service model, using the User Datagram Protocol (UDP). It is implemented with two UDP port numbers for its operations which are the same as for the bootstrap protocol (BOOTP). UDP port number 67 is the destination port of a server, and UDP port number 68 is used by the client.

Why does DHCP use two ports?

The reason TWO reserved ports are used, is to avoid 'waking up' and scheduling the BOOTP server daemons, when a bootreply must be broadcast to a client. Since the server and other hosts won't be listening on the 'BOOTP client' port, any such incoming broadcasts will be filtered out at the kernel level.

Does port 68 need to be open?

Ports 67 & 68 are normally used for an address assignment from a DHCP server. The client requests configuration on a broadcast to port 68 (bootps). The server broadcasts back the response to port 67 (bootpc). Your scan should show no open ports, and 68 should not be open "out".

2 Answers

The main reason is that the DHCP server might broadcast the "DHCP offer" on the mac level, instead of sending it unicast to the mac address it had received the request. If the port wasn't constant, some hosts that are listening by chance to the this same random port, will accept the packet to layer 5 - the application layer. In other words, an application will get message from completely different application, not an healthy situation.

like image 179
gigman Avatar answered Oct 05 '22 07:10

gigman

Because it's in the RFC (Request for Comments) that specifies how DHCP behaves. RFC 2131 is the document that specifies how a DHCP client and server must behave.

See here for more info on DHCP (section 4.1 in particular). See here for info on what the RFCs are.

like image 33
TLiebe Avatar answered Oct 05 '22 08:10

TLiebe
Sign in to Comment

Related questions

Why is writing a closed TCP socket worse than reading one?
What does the "s" mean in the structure?
Why can recv() in the client program receive messages sent to the client after the client has invoked shutdown(sockfd, SHUT_RD)?
Android (Java) network programming resources [closed]
How can I simulate TCP/IP errors?
With sql find next available integer within range that is not present in existing integer subset(s)
How does WSAStartup function initiates use of the Winsock DLL?
Simulate network conditions with a C/C++ Socket
AF_UNIX in windows
Android - find a server in the network
How to read a file from remote system using java?
Why do we say the IP protocol in TCP/IP suite is connectionless?
Getting list of network devices inside the Linux kernel
TCP Connect error 115 Operation in Progress What is the Cause?
InetSocketAddress vs InetAddress
How to copy a file from a network share to local disk with variables?
Non-blocking sockets
How to get a list of the machine's IP addresses from Rust?
Is it possible to connect two ios devices using sockets by getting their IP addressess?
How to view and edit the ephemeral port range on Linux?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!