Lab04 DHCP - morgan-hanrahan/Tech-Journal GitHub Wiki

In this lab, I installed and configured Linux DHCP services on my dhcp01.morgan.local. To do this I used PuTTy to connect to the DHCP server. I also had to configure the firewall to allow incoming DHCP requests. I had to make sure the IP is at the beginning of the range, domain, netmask, and gateway were all set up correctly. Then I looked at the DHCP logs and also provided a Wireshark screenshot showing the four key DHCP messages.

1. BOOTP: provides bootstrap information that allows a client to contact a server for a download file. BOOTP uses UDP and is usually on port 67 or 68. The protocol is used to assign various parameters from a BOOTP server. BOOTP cannot be filtered on Wireshark.

2. DHCP Relay Agent: Any TCP/IP host that is used to forward requests and replies between a DHCP server and client. The relay agent receives DHCP messages and formulates a new DHCP message to send to another interface.

3. DHCP Fingering: Used to identify the requester of a DHCP lease. It is performed through the analysis of DHCP exchanged frames and the content on them. You can use Wireshark to analyze the PCAP file with the network traffic you want to add a fingerprint. To do this make the filter frame_number==5.