Date: Sun, 31 Dec 2000 14:19:58 -0600 From: David Kelly <dkelly@hiwaay.net> To: "J.R." <contactjrnow@hotmail.com> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: dhcp and firewalls Message-ID: <200012312019.eBVKJwQ08173@grumpy.dyndns.org> In-Reply-To: Message from "J.R." <contactjrnow@hotmail.com> of "Sun, 31 Dec 2000 09:51:49 EST." <OE286TAeDNKpk3oDqW700006895@hotmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Please don't send html to mail lists. My reply at the end.
"J.R." writes:
> This is a multi-part message in MIME format.
>
> ------=_NextPart_000_0007_01C0730F.4B459950
> Content-Type: text/plain;
> charset="iso-8859-1"
> Content-Transfer-Encoding: quoted-printable
>
> when writing firewall rules, how does one simply establish "oip", when =
> the outside IP is dynamic as with Cogeco cable?
> thanx
> J.R. =20
>
> ------=_NextPart_000_0007_01C0730F.4B459950
> Content-Type: text/html;
> charset="iso-8859-1"
> Content-Transfer-Encoding: quoted-printable
>
> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
> <HTML><HEAD>
> <META http-equiv=3DContent-Type content=3D"text/html; =
> charset=3Diso-8859-1">
> <META content=3D"MSHTML 5.50.4522.1800" name=3DGENERATOR>
> <STYLE></STYLE>
> </HEAD>
> <BODY bgColor=3D#ffffff>
> <DIV><FONT face=3DArial size=3D2>when writing firewall rules, =
> how does one=20
> simply establish "oip", when the outside IP is dynamic as with Cogeco=20
> cable?</FONT></DIV>
> <DIV><FONT face=3DArial size=3D2>thanx</FONT></DIV>
> <DIV><FONT face=3DArial =
> size=3D2>J.R. </FONT></DIV></BODY></HTML>
>
> ------=_NextPart_000_0007_01C0730F.4B459950--
This works for me:
nic="fxp0"
ip=$(/sbin/ifconfig $nic | grep netmask | awk '{print $2}')
Am experimenting with an /etc/dhclient-exit-hooks file to see if I can
re-init my firewall on address change. The only hairy thing is one
doesn't want to reset the firewall unless the address really changed.
For details see my posting on -questions, Dec 12, 2000.
--
David Kelly N4HHE, dkelly@hiwaay.net
=====================================================================
The human mind ordinarily operates at only ten percent of its
capacity -- the rest is overhead for the operating system.
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200012312019.eBVKJwQ08173>