DHCP Client
What is Port 68?
Port 68 is the client-side port for the Dynamic Host Configuration Protocol (DHCP). When a client device needs an IP address, it sends a broadcast message from port 68 to port 67 on available DHCP servers. The server responds to port 68 on the client with the offered IP configuration. This two-port architecture (67 for servers, 68 for clients) allows both sides to listen on well-known ports and ensures proper routing of DHCP messages even before the client has an IP address. The DHCP client process runs on virtually every networked device — computers, phones, tablets, printers, IoT devices, and virtual machines. RFC 2131 defines the protocol behavior, and the client port is integral to the lease negotiation and renewal process.
Common Uses
- Receiving IP address configuration from DHCP servers
- IP lease renewal and rebinding
- Obtaining network parameters on initial connection
- Bootstrap configuration for diskless workstations
Technical Details
Copy-paste commands to check port 68 (DHCP Client) from your terminal
Test connectivity
nmap -p 68 -sU -sV example.com
(echo > /dev/tcp/example.com/68) 2>/dev/null && echo "open" || echo "closed"
Open port in firewall
sudo ufw allow 68/udp
sudo iptables -A INPUT -p udp --dport 68 -j ACCEPT
sudo firewall-cmd --permanent --add-port=68/udp && sudo firewall-cmd --reload
Security Considerations
Port 68 is typically only open on local network interfaces and not exposed to the internet. The main risks are DHCP spoofing attacks where a rogue server on the local network provides malicious configuration. Use DHCP snooping, 802.1X authentication, and network segmentation to mitigate these risks.
Popular Ports Reference
The most commonly used and referenced network ports