home

  • networking
    • spanning tree protocol (stp)
    dynamic host configuration protocol (dhcp)
    domain name system (dns)

  • bash scripting
    • website enumeration script
    understanding bash

  • cloud
    • cloud-init
    docker
    kubernetes

    dynamic host configuration protocol (dhcp)

    LinkedIn | GitHub

    Dynamic Host Configuration Protocol is a Layer 4 protocol used by network devices to request a dynamic IP address from a DHCP server. It is built off the BOOTP transport protocol. A four step process abbreviated as DORA is used.

    There are 8 message types for DHCP but, DORA negotiation between device and server uses 1-5.

  • 1. DHCPDiscover
    2. DHCPOffer
    3. DHCPRequest
    4. DHCPDecline
    5. DHCPAck
    6. DHCPNack
    7. DHCPRelease
    8. DHCPInform

    • IP negotiation should go like this:

    Figure 1: DORA IP assignment process


    The client will send out a DHCPDiscover message over broadcast. It is sent over broadcast because the client does not know the location of the DHCP server on the network. You can see the source IP is 0.0.0.0 because the device has not been assigned one yet.

    The DHCP server responds with a DHCPOffer message. The source IP is the IP of the DHCP server, the destination MAC is the MAC address of the client (this is how switches are able to forward it correctly), and the destination IP is the IP address being offered.

    Once DHCPOffer is received by the client, it will respond with a DHCPRequest. This is essentially where the client is saying "can I keep this address?". This message is also a broadcast however and looks virtually the same as a DHCPDiscover message in terms of source and destination addresses.

    Once the server receives the DHCPRequest messgae, it will reply with either a DHCPDecline or DHCPAck message. If a DHCPAck is sent, then the IP has been acknowledged by the server as belonging to the client and they may now start using it. Once the DHCPAck has been sent, a lease timer begins.

    The lease timer determines how long the device may keep the IP address. Once the timer reaches halfway (aka T1), the client will send out another DHCPRequest message via unicast (meaning sent directly to the DHCP server) to the server, asking to keep it's IP. If the server responds with a DHCPAck, the lease timer resets. If it doesn't then the client will broadcast (meaning it will be sent out to all network devices, which may be a different DHCP server than last time) out another DHCPRequest message once the timer has reached 7/8ths completion (T2). Any DHCP server can respond to T2 with DHCPAck and extend the lease. If no DHCP server responds and the lease expires, the device must go through the whole DORA process again.