From owner-freebsd-questions@FreeBSD.ORG  Wed Apr 13 03:55:44 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id AAE1916A4CE
	for <freebsd-questions@freebsd.org>;
	Wed, 13 Apr 2005 03:55:44 +0000 (GMT)
Received: from mta13.adelphia.net (mta13.adelphia.net [68.168.78.44])
	by mx1.FreeBSD.org (Postfix) with ESMTP id D872943D1D
	for <freebsd-questions@freebsd.org>;
	Wed, 13 Apr 2005 03:55:43 +0000 (GMT)	(envelope-from parv@pair.com)
Received: from default.chvlva.adelphia.net ([69.160.65.223])
	by mta13.adelphia.netESMTP
	<20050413035543.KRTZ4618.mta13.adelphia.net@default.chvlva.adelphia.net>;
	Tue, 12 Apr 2005 23:55:43 -0400
Received: by default.chvlva.adelphia.net (Postfix, from userid 1000)
	id 0C287B50A; Tue, 12 Apr 2005 23:55:47 -0400 (EDT)
Date: Tue, 12 Apr 2005 23:55:46 -0400
From: Parv <parv@pair.com>
To: Francis Whittington <fewjr@adelphia.net>
Message-ID: <20050413035546.GA3683@holestein.holy.cow>
Mail-Followup-To: Francis Whittington <fewjr@adelphia.net>,
	freebsd-questions@freebsd.org
References: <000601c53fc3$e5367090$030a000a@CTU>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <000601c53fc3$e5367090$030a000a@CTU>
cc: freebsd-questions@freebsd.org
Subject: Re: ipf.rules
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: f-q <freebsd-questions@freebsd.org>
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Apr 2005 03:55:44 -0000

in message <000601c53fc3$e5367090$030a000a@CTU>,
wrote Francis Whittington thusly...
>
> # Allow out access to my ISP's DHCP server for cable or DSL networks.
...
> # Use the following rule and check log for IP address.
> # Then put IP address in commented out rule & delete first rule
> pass out log quick on dc0 proto udp from any to any port = 67 keep state
> #pass out quick on dc0 proto udp from any to z.z.z.z port = 67 keep state
> 
> How do I know which ip address I am looking for to put in place of
> "z.z.z.z. port= 67 keep state" in the rule that is saved.

Well, what does the log says as explicitly indicated in your
supplied comments (marked w/ '"#")?

To reiterate, 'z.z.z.z' is the address of your DHCP server.  You
will see it in the log as the (outside) host of which port 67
(bootps) is accessed (probably from address of 255.255.255.255).

(I do not know the default log file for ipf on 5.x; i have set it
manually in /etc/syslog.conf to be "ipf.log" (as the default was not
a special name which would have stood out (in /var/log)).)


  - Parv

--