Binding DHCP server to one interface in multihomed machine
Hanasaki JiJi
hanasaki at hanaden.com
Sun Dec 22 21:35:34 CST 2002
As a rule-of-thumb ... Write rules to allow what you need then add one
rule to block everything. Anything not specifically allowed first will
be blocked.
Gerald Combs wrote:
> On Sun, 22 Dec 2002, Hanasaki JiJi wrote:
>
>
>>For security, iptables out the other NIC anyways
>
>
> Good point. To do this, block inbound packets to port 67 on your outside
> interface. (If you block inbound packets _from_ port 67, your DHCP client
> won't work.)
>
>
>
>>Gerald Combs wrote:
>>
>>>On Sat, 21 Dec 2002 paul at kcnetcare.com wrote:
>>>
>>>
>>>
>>>>Anyone help me with binding DHCP server to one interface?
>>>>
>>>>I'm using DHCP client on ETH1 and want to use DHCP server on ETH0.
>>>>
>>>>I've looked on the Internet but didn't find anything.
>>>
>>>
>>>If you're using the ISC DHCP server (which ships with most Linux and BSD
>>>systems) it's configured from the command line, e.g.
>>>
>>> dhcpd -q eth0
>>>
>>>Configuring this varies from distribution to distribution. Under OpenBSD
>>>it's configured in /etc/rc.conf. Under Red Hat it's probably down in
>>>/etc/sysconfig somewhere. I'm not sure about other systems.
>>>
>>>
>>
>>--
>>= Management is doing things right; leadership is doing the =
>>= right things. - Peter Drucker =
>>=_______________________________________________________________=
>>= http://www.sun.com/service/sunps/jdc/javacenter.pdf =
>>= www.sun.com | www.javasoft.com | http://wwws.sun.com/sunone =
>>
>>
>>
>>
>
>
--
= Management is doing things right; leadership is doing the =
= right things. - Peter Drucker =
=_______________________________________________________________=
= http://www.sun.com/service/sunps/jdc/javacenter.pdf =
= www.sun.com | www.javasoft.com | http://wwws.sun.com/sunone =
More information about the Kclug
mailing list