yahoo-eng-team team mailing list archive

Thread
Date

[Bug 1260731] [NEW] On an external network dhcp create a port which is not isolated

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: Sylvain Afchain <sylvain.afchain@xxxxxxxxxxxx>
Date: Fri, 13 Dec 2013 13:24:46 -0000
Reply-to: Bug 1260731 <1260731@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Public bug reported:

Dhcp port on a external network is not isolated/protected, thus an
external ip is able to request the dnsmasq dns. If there is an resolver
in the dhcp_conf file (dns_dnsmasq_server) an external user is able to
access to this server through the dnsmasq port. This could be a security
issue.

** Affects: neutron
     Importance: Undecided
         Status: New

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to neutron.
https://bugs.launchpad.net/bugs/1260731

Title:
  On an external network dhcp create a port which is not isolated

Status in OpenStack Neutron (virtual network service):
  New

Bug description:
  Dhcp port on a external network is not isolated/protected, thus an
  external ip is able to request the dnsmasq dns. If there is an
  resolver in the dhcp_conf file (dns_dnsmasq_server) an external user
  is able to access to this server through the dnsmasq port. This could
  be a security issue.

To manage notifications about this bug go to:
https://bugs.launchpad.net/neutron/+bug/1260731/+subscriptions

Follow ups

[Bug 1260731] Re: On an external network dhcp create a port which is not isolated
From: Launchpad Bug Tracker, 2015-12-06
[Bug 1260731] [NEW] On an external network dhcp create a port which is not isolated
From: Sylvain Afchain, 2013-12-13

References

[Bug 1260731] [NEW] On an external network dhcp create a port which is not isolated
From: Sylvain Afchain, 2013-12-13