From owner-freebsd-questions Sun Jan 26 20:17:29 2003 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1549137B401 for ; Sun, 26 Jan 2003 20:17:28 -0800 (PST) Received: from vms4.rit.edu (vms4.isc.rit.edu [129.21.3.15]) by mx1.FreeBSD.org (Postfix) with ESMTP id 491A843F1E for ; Sun, 26 Jan 2003 20:17:27 -0800 (PST) (envelope-from bjm1287@ritvax.isc.rit.edu) Received: from dogbert ([129.21.129.47]) by ritvax.isc.rit.edu (PMDF V5.2-32 #30660) with ESMTPA id <01KRPIDKD7CQSNGMN9@ritvax.isc.rit.edu> for questions@freebsd.org; Sun, 26 Jan 2003 23:17:16 EST Date: Sun, 26 Jan 2003 23:16:05 -0500 From: Brian McCann Subject: RE: IPFW and DHCPD In-reply-to: <20030126204607.B2377@wonkity.com> To: 'Warren Block' , questions@freebsd.org Message-id: <000801c2c5ba$cf7845b0$1500a8c0@dogbert> MIME-version: 1.0 X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 X-Mailer: Microsoft Outlook, Build 10.0.2616 Content-type: text/plain; charset=us-ascii Content-transfer-encoding: 7BIT Importance: Normal X-Priority: 3 (Normal) X-MSMail-priority: Normal Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG You need to allow UDP ports 67&68 for full DHCP support, in both directions...so.... "ipfw add allow any 67 to any any via int out" "ipfw add allow any 67 to any any via int in" "ipfw add allow any 68 to any any via int out" "ipfw add allow any 68 to any any via int in" Something like that should do it. Hope that helps. --Brian -----Original Message----- From: owner-freebsd-questions@FreeBSD.ORG [mailto:owner-freebsd-questions@FreeBSD.ORG] On Behalf Of Warren Block Sent: Sunday, January 26, 2003 10:58 PM To: questions@freebsd.org Subject: IPFW and DHCPD Can someone post a set of ipfw rules to allow DHCP to work on the inside interface, something that would work in the context of the "SIMPLE" example in /etc/rc.firewall? I've got too many variables to tell if I've got a working set of rules and non-working dhcpd, or the other way around. Thanks! -Warren Block * Rapid City, South Dakota USA To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message