Re: iptables + dhcp_client

To: Tom Allison <tallison@tacocat.net>, debian <debian-user@lists.debian.org>
Subject: Re: iptables + dhcp_client
From: Johan Ehnberg <johan@ehnberg.net>
Date: Sun, 09 Mar 2003 00:14:08 +0200
Message-id: <[🔎] 3E6A6B30.4090308@ehnberg.net>
In-reply-to: <3E6A62C5.8020202@tacocat.net>
References: <[🔎] 3E6A1A0E.9070900@tacocat.net> <[🔎] 3E6A25D1.9060404@ehnberg.net> <3E6A62C5.8020202@tacocat.net>

Is this in 'man dhclient-script' under /etc/dhclient-exit-hooks ?
It appears that I have to write up my own script, yes?

Yes, you'll have to write your own script, but it's not difficult. It'sthe same as giving commands through a terminal, you just Get MoreFunctionality (tm) and Make the Computer Do Your Job (tm) :-) . Just sitback and relax while you watch everything go wrong...

It works! It works great. But it's has the same issue of being adhcp client with an iptables firewall on it.But If the first part is true, then the issue of it being pcmcia ismoot. Yes?

Pcmcia NICs appear as normal cards to the firewall software. It's shouldbe no problem.Btw, if you use a dhcp system, you seem to be setting up pretty complexfirewalls.Or have you tried using (iptables) with -i and -o? No IP needed. Rulesare bound to interfaces (in-interface and out-interface) instead. Noscripts.

These are totally sufficient for local only firewalls.

I'd like to hear about this, I've been wondering about some SNAT andDNAT rules in iptables myself. They can't be used with -i and -o...


hth,
/johan

--
Johan Ehnberg
johan@ehnberg.net
"Windows? No... I don't think so."

Reply to:

References:
- iptables + dhcp_client
  - From: Tom Allison <tallison@tacocat.net>
- Re: iptables + dhcp_client
  - From: Johan Ehnberg <johan@ehnberg.net>

Prev by Date: Re: Howto find the Agfa SnapScan 1212p
Next by Date: Another Happy Debian User
Previous by thread: Re: iptables + dhcp_client
Next by thread: exim & iptables
Index(es):
- Date
- Thread