From owner-freebsd-questions@FreeBSD.ORG Sun Feb 1 12:59:00 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 516C016A4CE for ; Sun, 1 Feb 2004 12:59:00 -0800 (PST) Received: from netserver1.shoregroup.com (unused-66-218-0-62.usadatanet.net [66.218.0.62]) by mx1.FreeBSD.org (Postfix) with ESMTP id F257843D3F for ; Sun, 1 Feb 2004 12:58:58 -0800 (PST) (envelope-from ecarmody@shoregroup.com) Received: from edsdell8200 (syr-93.shoregroup.com [64.9.46.93]) i11KwvoP014969; Sun, 1 Feb 2004 15:58:57 -0500 From: "Edward Carmody" To: "'Luke Johannsen'" Date: Sun, 1 Feb 2004 15:58:41 -0500 Message-ID: <007c01c3e906$2f884080$3268a8c0@edsdell8200> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.4510 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165 In-Reply-To: Importance: Normal cc: freebsd-questions@freebsd.org Subject: RE: FBSD router/firewall with dhclient & dhcpd (Solved) X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 01 Feb 2004 20:59:00 -0000 From "http://www.thekelleys.org.uk/dnsmasq/doc.html": "Dnsmasq can be configured to automatically pick up the addresses of it's upstream nameservers from ppp or dhcp configuration. It will automatically reload this information if it changes. This facility will be of particular interest to maintainers of Linux firewall distributions since it allows dns configuration to be made automatic." Bingo, 100%. Thanks, Luke. I owe you a beer... -----Original Message----- From: Luke Johannsen [mailto:luke@themango.org]=20 Sent: Sunday, February 01, 2004 3:48 PM To: Edward Carmody Cc: freebsd-questions@freebsd.org Subject: Re: FBSD router/firewall with dhclient & dhcpd On Feb 1, 2004, at 2:24 PM, Edward Carmody wrote: > Hi, I'm trying to replace my Linksys > router/firewall/nat box with a FreeBSD box...I'm > in the configuring/testing phase before I put it > into production... > > My *potential* problem is that my ISP > (Cablevision) re-addresses their DNS servers > often. My question is: is there a way to > dynamically update the "option > domain-name-servers" values in dhcpd.conf from the "nameserver" values=20 > my ISP-facing, dhclient-using interface is writing into "resolv.conf"? > > Or, more simply, how can my DHCP server hand out > *known-fresh-and-good* ISP dns server addresses > gathered from the wan-facing dhcp client?? The > linksys box I have now does this auto-magically... > ;-) > I don't know if this is a solution that you want but it works for me.=20 Setup DNSMasq on your firewall machine.=20 http://www.thekelleys.org.uk/dnsmasq/doc.html or from the ports=20 /usr/ports/dns/dnsmasq. Then just point to your internal IP on your=20 firewall as your nameserver. It's quick and painless to setup and get=20 running and seems to work well for small networks.