In my free time I''ve been setting up this firewall and testing it out. It seems to work great. Until I set it on the ISP connection and then it won''t set up DHCP. The network is a 65-something. the DHCP client keeps getting martian logging from a 10.92.0.1 ip address with the DHCP response. As far as I can tell, martians are logged, not rejected or dropped. So I''m not sure why this is happening. The same interface works with DHCP correctly on my internal subnet. I just keep getting martian source 255.255.255.255 from 10.92.0.1, on dev eth1 I do not have norfc1918 or rfc1918strict on any interfaces, yet. ------------------------------------------------------------------------------ SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can''t happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/
Tom Allison wrote:> In my free time I''ve been setting up this firewall and testing it out. > It seems to work great. > > > Until I set it on the ISP connection and then it won''t set up DHCP. > > > The network is a 65-something. > the DHCP client keeps getting martian logging from a 10.92.0.1 ip > address with the DHCP response. As far as I can tell, martians are > logged, not rejected or dropped. > > So I''m not sure why this is happening. The same interface works with > DHCP correctly on my internal subnet. > > I just keep getting > martian source 255.255.255.255 from 10.92.0.1, on dev eth1 > > I do not have norfc1918 or rfc1918strict on any interfaces, yet.We can''t help you without seeing some details (output of ''shorewall dump'' fpr exa,[;e). I can tell you that the problem has nothing to do with Shorewall, however. ------------------------------------------------------------------------------ SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can''t happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/
> We can''t help you without seeing some details (output of ''shorewall > dump'' fpr exa,[;e). I can tell you that the problem has nothing to do > with Shorewall, however. >You are right. It has nothing to do with Shorewall. But I was hopeful that shorewall community might have some experience. I did figure it out eventually. The cable modem has a problem with switching the connecting PC. Maybe it stores a MAC address. Anyways, unplug *everything* from the cable modem, wait a few minutes and restart. It''s working wonderfully!!!! ------------------------------------------------------------------------------ SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can''t happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/