Date: Mon, 18 Aug 2003 12:11:09 -0700 From: Mark Woodson <mwoodson@sricrm.com> To: "geek" <geek@netcabo.pt> Cc: freebsd-questions@freebsd.org Subject: Re: [JunkMail] RE: RE: [JunkMail] IPF & DHCP request Message-ID: <200308181211.17147.mwoodson@sricrm.com> In-Reply-To: <2305CFC39C15AA4896E06E5C91C509EF03743863@VS2.hdi.tvcabo> References: <2305CFC39C15AA4896E06E5C91C509EF03743863@VS2.hdi.tvcabo>
next in thread | previous in thread | raw e-mail | index | archive | help
=2D----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Sunday 17 August 2003 05:05 pm, geek wrote: > i read it already, but i have a problem with it > > #---------------------------------------------------------------- > # Allow bootp traffic in from your ISP's DHCP server only. > #---------------------------------------------------------------- > pass in quick on ed0 proto udp from X.X.X.X/32 to any port =3D 68 keep st= ate > > My IP changes every time i reboot the machine, how i can make this works = ?! The from (ed0 is the external interface in the example) is the address of y= our=20 ISP's DHCP server. replace X.X.X.X with any unless you want to try and=20 figure out the DHCP server's IP address. So the line above should read pass in quick on ed0 proto udp from any to any port =3D 68 keep state This is less secure than is ideal since it would allow a theoretical attack= on=20 your dhclient, but should work. =2D -Mark =2D----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (FreeBSD) iD8DBQE/QSTSF/yyV91po54RApamAKCVZthCWcjwvbD0EiJriOgPMu2elgCgp4uh wPApM5PWXWdH8bZEHZV4GhE=3D =3D5QOO =2D----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200308181211.17147.mwoodson>