From owner-freebsd-questions@FreeBSD.ORG Sun Aug 17 13:30:41 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 986C837B401 for ; Sun, 17 Aug 2003 13:30:41 -0700 (PDT) Received: from smtp.netcabo.pt (smtp.netcabo.pt [212.113.174.9]) by mx1.FreeBSD.org (Postfix) with ESMTP id B436C43F85 for ; Sun, 17 Aug 2003 13:30:40 -0700 (PDT) (envelope-from geek@netcabo.pt) Received: from smtp.netcabo.pt ([192.168.16.49]) by smtp.netcabo.pt with Microsoft SMTPSVC(5.0.2195.5329); Sun, 17 Aug 2003 21:29:38 +0100 content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable X-MimeOLE: Produced By Microsoft Exchange V6.0.6470.0 Date: Sun, 17 Aug 2003 21:29:37 +0100 Message-ID: <2305CFC39C15AA4896E06E5C91C509EF03743862@VS2.hdi.tvcabo> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: IPF & DHCP request Thread-Index: AcNk/kdBXzsl5/HYQc+IIBi7OLN+Kw== From: "geek" To: X-OriginalArrivalTime: 17 Aug 2003 20:29:38.0008 (UTC) FILETIME=[4778DD80:01C364FE] Subject: IPF & DHCP request X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 17 Aug 2003 20:30:41 -0000 Hey guys, can u please post (who have) rules with DHCP involved?! = because, i'm in troube, my firewall doesnt work because because my = ipf.rules doesnt work and i dont know why!! When i put in rules "pass in/out all" i have acess to the internet, = otherwise, with my rules i dont, and i have change them so many times, = and they didnt work anyway, if anyone can help me: block in log all block out log all pass in quick on lo0 all pass out quick on lo0 all pass in quick on ep0 all pass out quick on ep0 all #Allow internal traffic to outside world pass out quick on ep1 proto tcp all keep state pass out quick on ep1 proto udp all keep stateuic pass out quick on ep1 proto icmp all keep state #Allow traffic from outside #DNS pass in quick on ep1 proto udp from any to any port =3D 53 keep state #DHC# [dhclient] pass in quick on ep1 proto udp from any to any port =3D 68 keep state = keep fragsP ... where ep1 is external interface and ep0 is the internal :/ thankks!