Board index Linux Networking

DHCP clients inside firewall

DHCP clients inside firewall

Post by johno vega » Fri, 21 Jul 2000 04:00:00



I am developing a Group firewall for my cube, filled with PC's, I would
like to have several of the clients inside the firewall recieve their IP
setup via DHCP from an external DHCP server.  Essentially I would like to
place a Linux ipchains firewall infront of several PCs who connect to the
internal LAN and not have to make any client changes.  Can I use the
Firewall as a dhcp-relay-agent.  I an a linux novice but have had very
good success with the HOW-TO's

--
Posted via CNET Help.com
http://www.help.com/

 
 
 
Top

DHCP clients inside firewall

Post by José Luis Domingo Lópe » Fri, 21 Jul 2000 04:00:00


Hi johno vegas:
Quote:

> I am developing a Group firewall for my cube, filled with PC's, I would
> like to have several of the clients inside the firewall recieve their IP
> setup via DHCP from an external DHCP server.  Essentially I would like to
> place a Linux ipchains firewall infront of several PCs who connect to the
> internal LAN and not have to make any client changes.  Can I use the
> Firewall as a dhcp-relay-agent.  I an a linux novice but have had very
> good success with the HOW-TO's

From my firewall rc.d firewall script:

ipchains -I input  1 --source-port 67 --destination-port 68 -p udp -j ACCEPT
ipchains -I output 1 --source-port 68 --destination-port 67 -p udp -j ACCEPT

These two lines will insert rules to allow DHCP packets pass through your
firewall. The former line permits traversal of responses from the DHCP,
whereas the latter allows clients to send DHCP requests through the
firewall. For improved security, restrict these rules to the appropiate
interfaces with the "-i interface" option.

Jos Luis Domingo Lpez

 
 
 
Top

1. DHCP clients inside firewall part II

Setup: Ipchains firewall RH6.2 w/2 nic's
I would like my firewall clients to recieve their network configurations
from out side the firewall.  I do not want the internal clients use the
internal interface as their default gateway.  I want them to use the same
setup as users out side the firewall.  The internal interface will foward
all traffic using access lists.

My problem is the numbering of the internal interface of the firewall.  
how should I set it (static is fine) but what about DHCP from across the
external interface how will this affect the internal clients

I think this would be similar to a DMZ setup used by Web servers setup
between 2 firewalls, one firewall for the outside world and one for the
LAN.  I only understand the white board aspects of this setup, I have no
expierence with the techneques involved.

Any suggestions would be very helpful.

--
Posted via CNET Help.com
http://www.help.com/

2. $$ Information Auction - Sell What You Know - Buy What You Dont $$

3. FTP client inside linux firewall communicating with FTP server inside another linux firewall

4. Dial-In Security for SLIP/PPP

5. Problem: Mac, WinNT DHCP, Red Hat 6.0 firewall (Details inside)

6. Need help from any Unix Admin on Server Problem

7. Connecting my PPTP/L2TP client from my inside my firewall.

8. Load Balancing with Linux

9. Suggested firewall for box inside firewall?

10. DHCP client ... firewalled out?

11. Internal network can't get out through DHCP client(server and firewall for LAN)

12. going from static IP address to dhcp client firewall box

13. Passing DNS across firewall from DHCP Client


All times are UTC
Board index