Skip site navigation (1)Skip section navigation (2) 
Date:      Wed, 29 Sep 1999 13:34:20 -0400
From:      "Troy Settle" <st@i-plus.net>
To:        "Vaevictus Asmadi" <vaevictus@socket.net>, <freebsd-isp@FreeBSD.ORG>
Subject:   RE: Need Authoritative DHCP server ...
Message-ID:  <NDBBKPEMLJEBDEPFNHOHKEEGCAAA.st@i-plus.net>
In-Reply-To: <NDBBIOANCLGLNFOCLGEOIEEDCBAA.vaevictus@socket.net>
next in thread | previous in thread | raw e-mail | index | archive | help 

Not sure if I'm answering your question here, but I've got a box running
natd and dhcp without problems.

In this setup, ed0 faces the internet, and ed1 faces the internal LAN.


First, compile your kernel with IPFW and bpfilter.

Second, apply these IFPW rules:

  00100 divert 8668 ip from any to any via ed1
  00100 allow ip from any to any via lo0
  00200 deny ip from any to 127.0.0.0/8
  65000 allow ip from any to any

Third, enable natd with the following options in /etc/rc.conf:

  natd_enable="YES"
  natd_interface="ed1"
  natd_flags="-s -m"


Fourth, install and configure DHCP.
From my /etc/dhcpd.conf:

  server-identifier 10.10.100.1;
  subnet 10.10.100.0 netmask 255.255.255.0 {
    range 10.10.100.2 10.10.100.254;
    option domain-name-servers xxx.yyy.zzz.3 xxx.yyy.zzz.4 xxx.yyy.zzz.5;
    option routers 10.10.100.1;
    option subnet-mask 255.255.255.0;
    option broadcast-address 10.10.100.255;
    default-lease-time 2592000;
    max-lease-time 2592000;
  }

  # match this to the subnet facing the internet
  subnet xxx.yyy.zzz.0 netmask 255.255.255.0 {
  }


Hope this helps,

-Troy


> -----Original Message-----
> From: owner-freebsd-isp@FreeBSD.ORG
> [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of Vaevictus Asmadi
> Sent: Wednesday, September 29, 1999 9:39 AM
> To: freebsd-isp@FreeBSD.ORG
> Subject: Need Authoritative DHCP server ...
>
>
> I need a reliable DHCP server that will either do NAT or use existing NAT,
> and using the NAT to enforce use of DHCP...
> Is this possible?
> Has anyone got this to work?
>
>
> Vaevictus Asmadi
>
>
>
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-isp" in the body of the message
>



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-isp" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?NDBBKPEMLJEBDEPFNHOHKEEGCAAA.st>