Date: Tue, 21 Aug 2001 12:59:47 +0300 From: Peter Pentchev <roam@ringlet.net> To: Lasse Osterberg <lars.osterberg@ue.sr.se> Cc: freebsd-security@FreeBSD.ORG Subject: Re: IPfw and DHCP Message-ID: <20010821125947.C7824@ringworld.oblivion.bg> In-Reply-To: <002e01c12a27$2a3f30c0$d2c91986@elvisp>; from lars.osterberg@ue.sr.se on Tue, Aug 21, 2001 at 11:53:43AM %2B0200 References: <002e01c12a27$2a3f30c0$d2c91986@elvisp>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Aug 21, 2001 at 11:53:43AM +0200, Lasse Osterberg wrote: > Hi All, > > Is there anyway at system startup and/or via a cron job to pass my DHCP > ipaddress from my external interface to rc.firewall? > So my firewall rules still work if my external DHCP lease gets a new > ipaddress. You could always use the ipfw 'me' syntax - instead of an IP address, put the word 'me' in the ipfw rule, it matches any IP address assigned to a local interface. So, instead of: ipfw add allow tcp from any to 192.168.5.5 22 setup ..put: ipfw add allow tcp from any to me 22 setup ..and things should be fine. G'luck, Peter -- You have, of course, just begun reading the sentence that you have just finished reading. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010821125947.C7824>