From owner-freebsd-questions Mon Dec 11 20:39:54 2000 From owner-freebsd-questions@FreeBSD.ORG Mon Dec 11 20:39:52 2000 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mail6.lig.bellsouth.net (mail6.lig.bellsouth.net [205.152.0.91]) by hub.freebsd.org (Postfix) with ESMTP id 9B36C37B400 for ; Mon, 11 Dec 2000 20:39:51 -0800 (PST) Received: from eileen (adsl-61-148-210.int.bellsouth.net [208.61.148.210]) by mail6.lig.bellsouth.net (3.3.5alt/0.75.2) with SMTP id XAA18371; Mon, 11 Dec 2000 23:39:50 -0500 (EST) From: brownicm@prokyon.com Message-Id: <200012120439.XAA18371@mail6.lig.bellsouth.net> To: , "Mike Gruver" Date: Mon, 11 Dec 2000 23:32:47 -0500 MIME-Version: 1.0 Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Subject: Re: How to use simple firewall with DHCP? Priority: normal In-reply-to: <000801c063e9$c20967e0$0200a8c0@digitalavalanche.com> X-mailer: Pegasus Mail for Win32 (v3.01b) Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Use the values from /var/db/dhclient.leases. My IP number never changes, although I was never promised a static number. I have the same setup you have except that it's a DSL line rather than cable (I assume from your email addr). I also use 'natd_flags="-dynamic"' in /etc/rc.conf, although I'm not sure just what would happen if the IP number _was_ changed. Surprise!! I just checked mine and it _has_ changed (after six months)! With no apparent ill-effects. Double-check the netmask being assigned, it'll be non- standard as the provider usually has some sort of subnetting scheme giong on. Just use the IP number you're assigned with a final 0 (xxx.xxx.xxx.0) as the network number. This stuff scared me at first, but now it's a piece of cake. > I have a dual-homed host with non-routables on the inside domain (192.168.0.x) and DHCP on the outside with the ISP. The question is: the example rc.firewall file explains to setup your interface, ip and subnet for both the external and internal interfaces. Sounds great, except I am using DHCP on the external. Does anyone know how to specify this in the rc.firewall file for the onet, omask, and oip identifiers? > > Any help is appreciated. > > Thanks, > > mgruver@carolina.rr.com Where in Carolina? I'm in Greensboro... > ------------------------------------------- Chris Browning brownicm@prokyon.com ------------------------------------------- -------------------------- Chris Browning brownicm@prokyon.com ------------------------ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message