> could someone please explain the "right" way to do this, or point me
> to the right doc,
> I'm willing to learn if I can find the right teacher.
Make the 1st packet filtering rule
block log all
and from there read the firewall logs in real time with
tcpdump -s 96 -nleti pflog0
which will tell you what traffic is being dropped by the firewall.
Add the relevant rules, et voila.
By DHCP I assume you're running ISC dhcpd on the firewall itself ? Otherwise
you will need to relay the dhcp requests through the firewall.
Greg
_______________________________________________
[email protected] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-pf
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
