[JunkMail] RE: RE: [JunkMail] IPF & DHCP request
Mark Woodson
mwoodson at sricrm.com
Mon Aug 18 12:08:27 PDT 2003
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Sunday 17 August 2003 05:05 pm, geek wrote:
> i read it already, but i have a problem with it
>
> #----------------------------------------------------------------
> # Allow bootp traffic in from your ISP's DHCP server only.
> #----------------------------------------------------------------
> pass in quick on ed0 proto udp from X.X.X.X/32 to any port = 68 keep state
>
> My IP changes every time i reboot the machine, how i can make this works ?!
The from (ed0 is the external interface in the example) is the address of your
ISP's DHCP server. replace X.X.X.X with any unless you want to try and
figure out the DHCP server's IP address.
So the line above should read
pass in quick on ed0 proto udp from any to any port = 68 keep state
This is less secure than is ideal since it would allow a theoretical attack on
your dhclient, but should work.
- -Mark
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (FreeBSD)
iD8DBQE/QSTSF/yyV91po54RApamAKCVZthCWcjwvbD0EiJriOgPMu2elgCgp4uh
wPApM5PWXWdH8bZEHZV4GhE=
=5QOO
-----END PGP SIGNATURE-----
More information about the freebsd-questions
mailing list