Re: Firewalling with DHCP client

To: debian-firewall@lists.debian.org
Subject: Re: Firewalling with DHCP client
From: "Michel D'HOOGE" <michel.dhooge@trialog.com>
Date: Tue, 12 Jun 2001 09:58:55 +0200
Message-id: <3B25CBBF.BAE2B58A@trialog.com>
References: <3B24FA45.356F1BE0@telusplanet.net> <20010612084359.C727@lion.kingsley.co.za>

Michael Wood wrote:
> Depending on exactly what it is you're doing in your script, you
> might be able to set up the rules based on the interface instead
> of the IP address.  This way you can set up the firewall rules
> on boot before you even bring up the networking and not have to
> change them when your IP address changes.

In most of the firewall examples, there are antispoofing rules at the 
beginning. And in this case, you need your IP address. However the 
kernel can check IP spoofing directly (rp_filter in 2.2) but I don't
know what it is doing exactly.

Michel

Reply to:

References:
- Firewalling with DHCP client
  - From: Stefan Srdic <linuxbox@telusplanet.net>
- Re: Firewalling with DHCP client
  - From: Michael Wood <wood@kingsley.co.za>

Prev by Date: Re: ipchains-question about blocking services
Next by Date: Re: Firewalling with DHCP client
Previous by thread: Re: Firewalling with DHCP client
Next by thread: Re: Firewalling with DHCP client
Index(es):
- Date
- Thread