View Single Post
Old 4th March 2014
ocicat ocicat is offline
Administrator
 
Join Date: Apr 2008
Posts: 3,318
Default

Quote:
Originally Posted by jggimi View Post
DHCP requests begin as broadcasts, and broadcast traffic by its nature is not routable.
This is correct, however, Cisco routers can be configured to pass DHCP requests between networks (See the ip helper-address command which can be used to pass on different protocols utilizing UDP...). Hence, my question/admonition about how the client & server(s) are separated to chessmaster.
Quote:
From a security perspective, keep in mind what this could mean if you are using insecure network connections, such as the Internet: TFTP has no authentication, and packets are transmitted in plaintext. MITM attacks are possible, even if those attacks are low odds.
I completely concur that separating these services on different networks has ramifications which need to be understood. Since information has not been shared how remote is "remote", we can only speculate.
Reply With Quote