Since the /etc/firestarter/firewall script already
accounts for external broadcast address
255.255.255.255, in order to nullify processing for
LAN
non-routeable broadcast addresses (i.e.
192.168.2.255),
all that is necessary to do is set the 'BCAST'
variable to null. The previous proposed fix, to set
'BCAST' equal to 255.255.255.255, resulted in a
duplicate DROP entry for that address (as well as the
odd side effect of recreating the original problem).
BCAST=`/sbin/ifconfig $IF |grep Bcast: | cut -d : -f 3
| cut -d \ -f 1`
#
# If this is not a gateway or standalone machine
# connected directly to the internet, (i.e. behind a
# router), set external broadcast variable to null
#
# D. Brazziel 6/15/06
#
if [ "$NAT" = "off" ] && [ "$DHCP_SERVER" = "off" ] &&
[ "$BCAST" != "255.255.255.255" ]; then
BCAST=""
fi
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
