From owner-freebsd-questions Mon Jan 27 17: 2:24 2003 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AC7DB37B401 for ; Mon, 27 Jan 2003 17:02:23 -0800 (PST) Received: from wonkity.com (wonkity.com [65.173.111.5]) by mx1.FreeBSD.org (Postfix) with ESMTP id A913E43F85 for ; Mon, 27 Jan 2003 17:02:22 -0800 (PST) (envelope-from wblock@wonkity.com) Received: from wonkity.com (localhost [127.0.0.1]) by wonkity.com (8.12.6/8.12.6) with ESMTP id h0S12G3k005402; Mon, 27 Jan 2003 18:02:16 -0700 (MST) (envelope-from wblock@wonkity.com) Received: from localhost (wblock@localhost) by wonkity.com (8.12.6/8.12.6/Submit) with ESMTP id h0S12GNH005399; Mon, 27 Jan 2003 18:02:16 -0700 (MST) (envelope-from wblock@wonkity.com) Date: Mon, 27 Jan 2003 18:02:16 -0700 (MST) From: Warren Block To: Bill Moran Cc: questions@freebsd.org Subject: Re: IPFW and DHCPD In-Reply-To: <3E34D1F8.2050209@potentialtech.com> Message-ID: <20030127175115.C5371@wonkity.com> References: <000801c2c5ba$cf7845b0$1500a8c0@dogbert> <20030126215555.U2592@wonkity.com> <3E34D1F8.2050209@potentialtech.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Mon, 27 Jan 2003, Bill Moran wrote: > This is crazy. There is no sane way that anyone can give you rules for > this without knowing the rest of your firewall rules. Amoung other things, > _where_ you place the rules in the list, and what other rules that may > match DCHP traffic are critical to the success of your firewall rules. You're right. I did say that it was the "simple" rule set from /etc/rc.firewall, but it occurred to me later that the rules in there have changed over time. So I really should have said it was "simple" from /etc/rc.firewall in 4.7-Release. > Considering you stated that you're not sure if your firewall or dhcpd was > problematic, I would suggest the following diag procedure. Turns out both were working. The notebook had been working, at least when it was put into the bag a couple of months ago. In the meantime, the notebook's OS (*not* FreeBSD), had decided to render the USB Ethernet driver invisibly nonfunctional. The variations on ipfw rules were interesting, too. -Warren Block * Rapid City, South Dakota USA To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message