Hello everybody, we have the following problem. We must allow dhcp-requests from outside to our dhcp-server. I will allow only those requests, that's contain a specific ip-address of a dhcp-relay and a specific mac-address of the dhcp-client. I have capture the packet, and so I know the hex-data contains in the packet. I defined a custom app-id with parent-app dhcp, and defined a signature contains the specific hex-data (unknown-request-udp-payload, patterm-match, pattern: .*(\x96cbefc8e8039aa99e71\x) ). Also I defined a destination-port (udp/67). But that doesn't work. The custom app-id only match, when I defined also a application-override-rule. And it also match, when I changed the signature.:-( But I will not only override the application. I will use this custom app-id for allowing specific traffic. What's wrong? Is it possible? Thanks for any help.
... View more