RE: Problem about Firewall!!

Tue, 27 Jun 2000 08:51:05 -0700 

When setting up your DHCP, exclude a few addresses from the subnet so you
have them for fixed addresses.  Your internal routers and your firewall
should have fixed addresses, as should your internal DNS and WINS servers.

Once you have your DHCP set up to exclude giving out a particular address,
assign that one to the firewall.  Make a comment line in the DHCP
configuration file to that effect so you (and other admins) know there's
something at that IP.

Here's an example dhcpd.conf file that gives you an idea what to do:

# the default route for DHCP clients to use
option routers 10.1.0.1;
# your DNS server(s), separated by a comma and a space
option domain-name-servers 10.1.0.2, 10.1.0.3;
# the domain your internal machines will be told they're a part of
option domain-name "your.intranet.com";
# WINS server(s), separated by a comma and a space
option netbios-name-servers 10.1.0.4;
# broadcast address
option broadcast-address 10.1.0.255;
# subnet to give out DHCP addresses in.
subnet 10.1.0.0 netmask 255.255.255.0 {
        # a range of addresses to give out
        range 10.1.0.50 10.1.0.150;
        # another range (purely optional but you can if you want)
        range 10.1.0.200 10.1.0.254;
        # for BOOTP clients, it would read:
        # range dynamic-bootp 10.1.0.200 10.1.0.254;
        # and you'd have several other options defined as well
}

Does that answer your question?

-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of ����
Sent: Tuesday, June 27, 2000 3:47 AM
To: [EMAIL PROTECTED]
Subject: Problem about Firewall!!


hi,all:
   There is a question involving the Firewall.As we know ,the Firewall
should provide two ports:one is the wan port and the other is the lan
port.Hence we bind the  IP address to each of the  port.
It is just the static IP address.The question is : when we have a LAN,and
each of the pc in the LAN gets its IP address from a DHCP server.How can I
setup the IP address for the Firewall? And how can I setup the IP-Filter in
the Firewall,since the pc's IP address is dynamic?
    thank you


  best regard.

   Genu

_____________________________________________
һ·�����㣬��һ��ҲԸ�⣡
--Ϊ��ϲ����֧�ֵ�263�׶����ߣ�http://www.263.net��ͶһƱ��
��ҪͶƱ����http://fsurvey.cnnic.net.cn/survey/index.html��
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]

-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]

Reply via email to