Brooks Carlson schrieb:
> Now, the firewall is blocking DHCP attempts. I see in the log:
It should. You do not have a DHCP service running on a firewall machine, don't
you?!
And routing DHCP into a different network is ...tricky, best.
> Alert Drop (no source) 255.255.255.255 udp rule0 sourceport68
"Rule 0" is anti-spoofing. You could create a "broadcast" network object with
IP address 255.255.255.255 and add that to the allowed addresses to your inside
interface. Make sure you have checked "broadcast allowed" for that interface,
too.
> I created a rule that says:
>
> Any DHCPServer bootp (67/68) accept log long
should read "broadcast" (see above). Simply look into the log what's needed!
Bye
Volker
--
Volker Tanger <[EMAIL PROTECTED]>
Wrangelstr. 100, 10997 Berlin, Germany
DiSCON GmbH - Internet Solutions
http://www.discon.de/
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
