[ previous ] [ next ] [ threads ]
 
 From:  "Jonathan De Graeve" <Jonathan dot De dot Graeve at imelda dot be>
 To:  "Kris Maglione" <bsdaemon at comcast dot net>, <m0n0wall at lists dot m0n0 dot ch>
 Subject:  RE: [m0n0wall] mono wall 1.11 susceptible to dhcp dos attack
 Date:  Thu, 15 Sep 2005 20:57:56 +0200
What is considered a large dhcp load?

I'm expecting some of 512 users on that network and I'm not willing to
setup a different DHCP box.

My box has 1GB of ram. It would be nice if the RAMdisk size could be set
in configmode or something.

J.

-----Oorspronkelijk bericht-----
Van: Kris Maglione [mailto:bsdaemon at comcast dot net] 
Verzonden: donderdag 15 september 2005 20:51
Aan: m0n0wall at lists dot m0n0 dot ch
Onderwerp: Re: [m0n0wall] mono wall 1.11 susceptible to dhcp dos attack

Chris Buechler wrote:

>m0n0wall was never intended to serve as a large-scale DHCP server, and
>Manuel has stated in the past if you need to handle large loads or
>need any options more than what's now in the GUI, you need a "real"
>DHCP server.
>  
>
If the WebGUI does have enough options, though, and you like the ease of

access, you might hack the sources to mount a rw partition and write the

dhcpd lib directory there. You chould also just create a larger RAM 
disk. I'd be willing to hack up a custom image for the purpose, if you 
want it. Mounting a real rw partition, though, is an extremely bad idea 
if you use CF, since the dhcpd leases file changes so much.

---------------------------------------------------------------------
To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch