Hmmm DHCP IS already specified in my external interfaces entry. I DO have log complaints about RFC1819 dropping UDP Port 67 packets (specifically from 10.213.0.1 )
So I think we have the problem identified. The last question, where is the most appropriate place to add the firewall exception rule? harold Miller Southern Oregon -----Original Message----- From: Tom Eastep [mailto:[EMAIL PROTECTED]] Sent: Monday, July 15, 2002 6:07 PM To: Jeff Newmiller Cc: Harold Miller; [EMAIL PROTECTED] Subject: Re: [leaf-user] DHCP Renewal On Mon, 15 Jul 2002, Jeff Newmiller wrote: > > Look in /var/log/messages and/or /var/log/syslog for firewall messages of > complaining about port 67 or 68. You probably need to set up an accept > line for the replies in your shorewall rules file. Shorewall gets enabled > after the networking script runs... I am surprised you havent had to > "shorewall stop" as well as restart networking. With Shorewall, you want 'dhcp' specified on your external interface's entry in /etc/shorewall/interfaces. You don't need to add any rules for DHCP. -Tom -- Tom Eastep \ Shorewall - iptables made easy AIM: tmeastep \ http://www.shorewall.net ICQ: #60745924 \ [EMAIL PROTECTED] -- This message has been scanned for viruses and dangerous content by NW.NET's MailScanner, and is believed to be clean. -- This message has been scanned for viruses and dangerous content by NW.NET's MailScanner, and is believed to be clean. ------------------------------------------------------- This sf.net email is sponsored by: Jabber - The world's fastest growing real-time communications platform! Don't just IM. Build it in! http://www.jabber.com/osdn/xim ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
