On Mon, 2003-07-21 at 12:06, tjmattil@cc.hut.fi wrote:> Can someone give advice on how to get dhcp requests going back and forth
through
> shorewall.
>
> I have a debian box running shorewall and it gets a dynamic ip with dhcp
from my
> ISP. Shorewall version 1.4.5
>
> At the moment I have linux desktops masqueraded behind this firewall.
>
> My ISP gives me five dynamic IPs and I would like to be able to use one of
these
> for one of my linux desktops.
>
> I have tried these settings without it working
>
> masq
> ------
> #INTERFACE SUBNET ADDRESS
> eth0 192.168.1.0/24
>
> interfaces
> ----------
> #ZONE INTERFACE BROADCAST OPTIONS
> net eth0 detect dhcp
> loc eth1 detect dhcp
>
> What I also do is run dhcp-relay on the firewall.
>
> Is this the correct way to do this or is there an easier way?
>
> I haven''t seen any guides on shorewall.net explaining about this.
>
> Thanks for your help in advance, getting desperate here.
>
I think that the only way that you will get this to work is to use a
bridging firewall (which means you won''t be using Shorewall). You can
get the dhcp-relay to work Ok but I don''t think there is a way to solve
the routing problem given that you don''t know in advance which IP
address(es) you are going to get.
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
Shoreline, \ http://shorewall.net
Washington USA \ teastep@shorewall.net