|
|
@@ -572,28 +572,28 @@ temporarily override a list of interface names and listen on all interfaces.
|
|
|
|
|
|
<section id="dhcpinform-unicast-issues">
|
|
|
<title>Issues with unicast responses to DHCPINFORM</title>
|
|
|
- <para>The use of the UDP sockets has certain benefits in the deployments
|
|
|
- where the server receives a relayed traffic only. These benefits are
|
|
|
+ <para>The use of UDP sockets has certain benefits in deployments
|
|
|
+ where the server receives only relayed traffic. These benefits are
|
|
|
mentioned in the <xref linkend="dhcp4-interface-configuration"/>. From
|
|
|
the administrator's perspective it is often desired to be able to
|
|
|
configure the system's firewall to filter out the unwanted traffic, and
|
|
|
the use of UDP sockets faciliates it. However, the administrator must
|
|
|
also be aware of the implications related to filtering certain types
|
|
|
- of traffic as it my impair the DHCP server's operation.
|
|
|
+ of traffic as it may impair the DHCP server's operation.
|
|
|
</para>
|
|
|
|
|
|
<para>In this section we are focusing on the case when the server
|
|
|
receives the DHCPINFORM message from the client via a relay. According
|
|
|
to the <ulink url="http://tools.ietf.org/html/rfc2131">RFC 2131</ulink>,
|
|
|
- the server should unicast DHCPACK response to the address carried in
|
|
|
+ the server should unicast the DHCPACK response to the address carried in
|
|
|
the 'ciaddr' field. When the UDP socket is in use, the DHCP server
|
|
|
relies on the low level functions of an operating system to build the
|
|
|
- data link, IP and UDP layer of the outgoing message. Typically, the
|
|
|
+ data link, IP and UDP layers of the outgoing message. Typically, the
|
|
|
OS will first use ARP to obtain the client's link layer address to be
|
|
|
inserted into the frame's header, if the address is not cached from
|
|
|
- the previous transaction that the client had with the server.
|
|
|
+ a previous transaction that the client had with the server.
|
|
|
When the ARP exchange is successful, the DHCP message can be unicast
|
|
|
- to the client, using the address obtained.
|
|
|
+ to the client, using the obtained address.
|
|
|
</para>
|
|
|
|
|
|
<para>Some system administrators block ARP messages in their network,
|
|
|
@@ -616,9 +616,9 @@ temporarily override a list of interface names and listen on all interfaces.
|
|
|
of the DHCPINFORM message into the link layer.
|
|
|
</para>
|
|
|
|
|
|
- <para>The server administrators willing to support DHCPINFORM
|
|
|
- messages via the relays should not block ARP traffic in their
|
|
|
- networks or use the raw sockets instead of the UDP sockets.
|
|
|
+ <para>Server administrators willing to support DHCPINFORM
|
|
|
+ messages via relays should not block ARP traffic in their
|
|
|
+ networks or should use raw sockets instead of UDP sockets.
|
|
|
</para>
|
|
|
</section>
|
|
|
|
Shawn Routhier