Actually, I only wanted DHCP for my internal interface...but until I spefically added accept rules for udp and tcp on ports 67 and 68 on the internal interface, my server/firewall would not accept dhcp requests, nor dole out the addresses.
And that, specifically, was the problem. And I'm 100% sure that's the problem with Mike's network, too. On Tue, 4 Dec 2001, David Talkington wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Mike Burger wrote: > > >I recently had a similar issue. > > > >The default behavior is to block everything that is not explicitly > >allowed. > > > >If you want to allow DHCP, you need to add ACCEPT rules to the firewall > >for those ports. > > For _clients_ using iptables, that's not true. All that's required is > to accept RELATED,ESTABLISHED. The _server_ firewall needs a hole. > > - -d > > > > >On Tue, 4 Dec 2001, Linux wrote: > > > >> Hi > >> > >> I have recently found out the reason why I cannot get DHCP to work on my > >> network. > >> It is because of my IPTables rc.firewall script. When I look through the > >> script > >> I cannot find a specific instance where ports 67 or 68 are blocked. > >> > >> can anyone offer any advice > >> > >> Many thanks > >> > >> Mike > >> > >> > >> This mail was processed by Mail essentials for Exchange/SMTP, > >> the email security & management gateway. Mail essentials adds > >> content checking, email encryption, anti spam, anti virus, > >> attachment compression, personalised auto responders, archiving > >> and more to your Microsoft Exchange Server or SMTP mail server. > >> For more information visit http://www.mailessentials.com > >> > >> > >> > >> _______________________________________________ > >> Redhat-list mailing list > >> [EMAIL PROTECTED] > >> https://listman.redhat.com/mailman/listinfo/redhat-list > >> > > > > > > > >_______________________________________________ > >Redhat-list mailing list > >[EMAIL PROTECTED] > >https://listman.redhat.com/mailman/listinfo/redhat-list > > > > - -- > David Talkington > http://www.spotnet.org > > PGP key: http://www.prairienet.org/~dtalk/0xCA4C11AD.pgp > > -----BEGIN PGP SIGNATURE----- > Version: PGP 6.5.8 > Comment: Made with pgp4pine 1.75-6 > > iQA/AwUBPA1vcL9BpdPKTBGtEQKAlwCg+GTQfS/jdt94LBQm0DEdUP8asKYAoJ1R > +HULvgW9RobiPaDLfdpcS4SL > =QY14 > -----END PGP SIGNATURE----- > > > > > _______________________________________________ > Redhat-list mailing list > [EMAIL PROTECTED] > https://listman.redhat.com/mailman/listinfo/redhat-list > _______________________________________________ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
