At 20:06 20.01.2002 -0800, you wrote: >Date: Mon, 21 Jan 2002 00:34:25 +0100 >From: Ewald Wasscher <[EMAIL PROTECTED]> >To: Tom Atwater <[EMAIL PROTECTED]> >Cc: [EMAIL PROTECTED] >Subject: Re: [Leaf-user] Updating port forwarding with dynamic IP > >Tom Atwater wrote: > ><snip> > >There is a newer Dachstein-PPPoE package available here: > >http://leaf.sourceforge.net/devel/khadley/ > > >The current problem I have is this: > >When Earthlink updates the dynamic IP, > >the LRP box does not update the port forwarding > >"from" address with the new dynamic IP. > > >That's wierd. That means that the firewall rules aren't reloaded (or >there is a bug in the firewall scripts). > > > > >So the web and ssh servers are no longer accessible > >from the outside. > > > >If I reboot the LRP box, everything is fine, > >but that is a manual process, and naturally > >I want it to be automatic. > > > > > >I know what the LRP commands are to update the > >"from" IP for port forwarding: > > > ># Get new dynamic IP > >EXT_IP=`/sbin/ip addr show dev ppp0 | grep inet | cut -f2 -d' '` > > > ># Clear old port fwd entries > >/usr/sbin/ipmasqadm portfw -f > > > ># Add entries with new dynamic IP > >/usr/sbin/ipmasqadm portfw -n -a -P tcp -L <dynamic_ip> 22 192.168.1.200 22 > >/usr/sbin/ipmasqadm portfw -n -a -P tcp -L <dynamic_ip> 80 192.168.1.200 80 > > >If you use the Eigerstein builtin firewall you should reload/restart the >firewall like this: > >svi network ipfilter reload
I don't know about Eiger...(actually there is no mountain called Eigerstein ;-) ) but on Dachstein this is normally done in the dhclient-exit-hooks, so it is automatic. Maybe you want to debug what your dhclient does when the address changes. Erich _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
