Re: DHCP and the "SIMPLE" option in /etc/rc.firewall
On Fri, 30 Jul 2004, James A. Coulter wrote: > Without a static IP address for my outside interface, how do I set these > options? you could 1. use 'me' (without quotes) to represent the ip address in rc.firewall OR 2. hack up an /etc/dhclient-exit-hooks which grabs the new ip address and reruns rc.firewall with this new address Regards, /\_/\ "All dogs go to heaven." [EMAIL PROTECTED](0 0)http://www.alphaque.com/ +==oOO--(_)--OOo==+ | for a in past present future; do| | for b in clients employers associates relatives neighbours pets; do | | echo "The opinions here in no way reflect the opinions of my $a $b." | | done; done | +=+ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: DHCP and the "SIMPLE" option in /etc/rc.firewall
Thanks - I'm going to give the Stateful + NATD rule set a try. > -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of JJB > Sent: Friday, July 30, 2004 8:20 AM > To: James A. Coulter; [EMAIL PROTECTED] > Subject: RE: DHCP and the "SIMPLE" option in /etc/rc.firewall > > > The handbook Firewall section has been rewritten. > > It's temporally available from www.a1poweruser.com/FBSD_firewall/ > as the Doc group works to sanitize the English. > It incorporates the long awaited solution to > getting ipfw + natd + stateful rules to function together, > as well as OpenBSD pf firewall which is scheduled to become > the third built in firewall software solution delivered with > the FreeBSD install when 5.x ever makes it to the stable branch. > > > > -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] Behalf Of > James A. Coulter > Sent: Friday, July 30, 2004 8:59 AM > To: [EMAIL PROTECTED] > Subject: DHCP and the "SIMPLE" option in /etc/rc.firewall > > I am setting up a firewall for a gateway/router running FreeBSD 4.10. > > This is for a small home LAN. > > I have already compiled and installed a custom kernel with > the IPFIREWALL and IPDIVERT options and configured the > firewall to pass any to any without any problems - now it's > time to start locking it down. > > I would like to use the firewall_type="SIMPLE" option > rc.conf. But I'm not sure how I should set up my external > nic in /etc/rc.firewall, i.e: > > # set these to your outside interface network and netmask and ip > oif="ed0" > onet="192.0.2.0" > omask="255.255.255.240" > oip="192.0.2.1" > > My outside interface is connected to a cable modem and is > configured for DHCP > > Without a static IP address for my outside interface, how do > I set these options? > > TIA for your help. > > Jim C. > > --- > Check it out: The Black Dog Gallery http://polaris.umuc.edu/~jcoulter ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: DHCP and the "SIMPLE" option in /etc/rc.firewall
The handbook Firewall section has been rewritten. It's temporally available from www.a1poweruser.com/FBSD_firewall/ as the Doc group works to sanitize the English. It incorporates the long awaited solution to getting ipfw + natd + stateful rules to function together, as well as OpenBSD pf firewall which is scheduled to become the third built in firewall software solution delivered with the FreeBSD install when 5.x ever makes it to the stable branch. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of James A. Coulter Sent: Friday, July 30, 2004 8:59 AM To: [EMAIL PROTECTED] Subject: DHCP and the "SIMPLE" option in /etc/rc.firewall I am setting up a firewall for a gateway/router running FreeBSD 4.10. This is for a small home LAN. I have already compiled and installed a custom kernel with the IPFIREWALL and IPDIVERT options and configured the firewall to pass any to any without any problems - now it's time to start locking it down. I would like to use the firewall_type="SIMPLE" option rc.conf. But I'm not sure how I should set up my external nic in /etc/rc.firewall, i.e: # set these to your outside interface network and netmask and ip oif="ed0" onet="192.0.2.0" omask="255.255.255.240" oip="192.0.2.1" My outside interface is connected to a cable modem and is configured for DHCP Without a static IP address for my outside interface, how do I set these options? TIA for your help. Jim C. --- Check it out: The Black Dog Gallery http://polaris.umuc.edu/~jcoulter ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
DHCP and the "SIMPLE" option in /etc/rc.firewall
I am setting up a firewall for a gateway/router running FreeBSD 4.10. This is for a small home LAN. I have already compiled and installed a custom kernel with the IPFIREWALL and IPDIVERT options and configured the firewall to pass any to any without any problems - now it's time to start locking it down. I would like to use the firewall_type="SIMPLE" option rc.conf. But I'm not sure how I should set up my external nic in /etc/rc.firewall, i.e: # set these to your outside interface network and netmask and ip oif="ed0" onet="192.0.2.0" omask="255.255.255.240" oip="192.0.2.1" My outside interface is connected to a cable modem and is configured for DHCP Without a static IP address for my outside interface, how do I set these options? TIA for your help. Jim C. --- Check it out: The Black Dog Gallery http://polaris.umuc.edu/~jcoulter ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
