Firewall blocking DHCP broadcast?

jim82 · Apr 25, 2015, 7:24 PM

Dear community,

Everytime a client gets a new DHCP on the network, pfSense firewall blocks a couple of packets.

I'm running DHCP on a Windows AD server and using pfSense as the forwarder, everything works perfect.

Can someone please explain why I see this being blocked? Any way to circumvene the issue?

Please see attachment.

BR Jim

doktornotor · Apr 25, 2015, 7:33 PM

Create a rule to allow it.

Nullity · Apr 25, 2015, 11:38 PM

DHCP relay?

jim82 · Apr 26, 2015, 5:34 PM

Yes I'm using DHCP relay. And every time a client asks for a DHCP address, the firewall log shows a block. My clients receive an address without problem, but I'm still unsure if I should just allow it.

Thanks
Jim

jahonix · Apr 26, 2015, 5:58 PM

Why not allow it if you need it anyways? Helps making things work stable…

jim82 · Apr 27, 2015, 6:43 PM

Thanks for your replies.

I now understand that the broadcasts will hit every single IP in the subnet and of course the gateway of VLAN12 will be hit as well.

I have just allowed the traffic to flow, to get rid of the spamming in my logs.

BR Jim

KOM · Apr 27, 2015, 7:45 PM

I have just allowed the traffic to flow, to get rid of the spamming in my logs.

You could create a rule to block it specifically and then set the rule to not log.