Date: Mon, 26 Mar 2001 11:29:18 -0700 From: "Scott Taylor" <staylor@coloradomusic.com> To: "Johnny Dang" <johnny.dang@johnnydang.net>, "FreeBSD IpFW" <FREEBSD-IPFW@FreeBSD.ORG> Subject: Re: Scripting with IPFW Message-ID: <013401c0b622$ae6f7fe0$835a449e@selaptop> References: <Pine.BSF.4.21.0103261316570.9647-100000@johnnydang.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Since a dhcp address technically CAN change on the fly or might not even have been fully assigned by the dhcp client daemon by the time your firewall rules are being assigned, it might be wise to allow traffic from the outside world to addresses in the entire subnet that your machine might end up in. Your machine will of course respond only to the one address it is assigned by dhcp, but this way no matter where it ends up in that address block, the proper ports are allowed in without worrying about rebuilding your ipfw rules after each dhcp assignment. ----- Original Message ----- From: Johnny Dang <johnny.dang@johnnydang.net> To: FreeBSD IpFW <FREEBSD-IPFW@FreeBSD.ORG> Sent: Monday, March 26, 2001 11:17 AM Subject: Scripting with IPFW > Hello all experts out there, > > I have a Linux box (used to run ipchains). I then move the box to FreeBSD > 4.2... Set it up and everything was running fine (with the help of your > guys). Now, I have a small problem. Since the DEC0 of my new IPFW is a > DHCP client, I would love to have the script grab the IP(rather than > specify it)... I have this line on Linux and it was fine: > > WAN_IP=`ifconfig $WAN_NIC | grep inet | cut -d: -f2 | cut -d " " -f1` ... > Now, how can I can set it up to put it under FreeBSD rc.firewall > de0=?????????? > > Thanks for your help. > > > > > ++++++++++++++++++++++++++++++++++++++++++++++++++ > "The instructions said to use Windows 98 or better, > so I installed FreeBSD...It is working now!..." > ++++++++++++++++++++++++++++++++++++++++++++++++++ > Johnny Dang <Johnny.Dang@johnnydang.net> > Senior Network Engineer/MCSE + Internet > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-ipfw" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?013401c0b622$ae6f7fe0$835a449e>