-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi Matthew,
I have a working leaf dnsmasq dhcp server and in same cases I have to specify a host name in the client otherwise dhcp won't work. Since it happens only when I do a netinstall of a new linux machine I never bothered to check why it behaves this way. I just checked my firewall rules and there is nothing regarding udp ports 67 and 68 so it may not be necessary to explicitly open them. In my dnsmasq.conf I have the following properties set (plus a bunch of specific rules to assign always the same address to known hosts): domain-needed bogus-priv interface=eth1 interface=eth2 domain=[insertyourdomanehere] dhcp-authoritative dhcp-range=loc,192.168.1.128,192.168.1.196,12h dhcp-range=dmz,192.168.0.128,192.168.0.196,12h Also, try to check in in daemon.log if there is any request to or from your client. Regards, Paolo. On Monday 24,May,2010 10:26 AM, MATTHEW CARTTER wrote: > Hi, > > I am running Beta 3 for Bering-uClibc 3.1.1 with ppp/pppoe. I am using dnsmasq with ppp/pppoe. I am able to connect to fw and the net when I use a static IP address and get the upstream nameservers via resolv-file=/etc/ppp/resolv.conf > > I am having trouble using dnsmasq as dhcpd server. The DHCP server is enabled. When I change my network connection to use DHCP on my pc, I cannot access fw or the net with a browser. I am unable to ping the fw. The Shorewall interfaces and rules files are below. > > # > # Shorewall version 3.4 - Interfaces File > # > # For information about entries in this file, type "man shorewall-interfaces" > # > # For additional information, see > # http://www.shorewall.net/3.0/Documentation.htm#Interfaces > # > ############################################################################### > #ZONE INTERFACE BROADCAST OPTIONS > net ppp0 - > loc eth1 detect > #LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE > > # > # Shorewall version 3.4 - Rules File > # > # For information on the settings in this file, type "man shorewall-rules" > # > # See http://www.shorewall.net/3.0/Documentation.htm#Rules for additional information. > # > ############################################################################################################# > #ACTION SOURCE DEST PROTO DEST SOURCE ORIGINAL RATE USER/ MARK > # PORT PORT(S) DEST LIMIT GROUP > #SECTION ESTABLISHED > #SECTION RELATED > SECTION NEW > # Accept DNS connections from the firewall to the network > # and from the local network to the firewall (in case dnsmasq is running) > DNS/ACCEPT fw net > DNS/ACCEPT loc fw > ACCEPT loc fw udp 67,68 > > # Accept SSH connections from the local network for administration > # > # SSH/ACCEPT loc fw > > # Allow Ping to Firewall and from Firewall > # > Ping/ACCEPT net fw > Ping/ACCEPT loc fw > Ping/ACCEPT fw net > Ping/ACCEPT fw loc > > # Allow traceroute from firewall > # > Trcrt/ACCEPT fw net > > # Allow local network to access weblet/webconf > # > Web/ACCEPT loc fw > # timeserver (allow syncing with time servers (default: pool.ntp.org)) > NTP/ACCEPT fw net > # timeserver (allow LAN clients to sync with the time service on the router) > # NTP/ACCEPT loc fw > #LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE > > I followed the directions found here: http://leaf.sourceforge.net/doc/buci-dnsmasq3.html > > I suspect that I have not correctly configured Shorewall to use dhcpd. > > Thanks in advance for your help. > > Matt > > - ------------------------------------------------------------------------------ > > ------------------------------------------------------------------------ > leaf-user mailing list: leaf-user@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/leaf-user > Support Request -- http://leaf-project.org/ > > -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAkv6S2kACgkQqAaEpZvj+VO0yACeM3YkC9VYteC3WwRB+gnDgmz5 z/UAmwaFoD462+gTK/6yAu+hRjPUluEJ =uvvM -----END PGP SIGNATURE----- ------------------------------------------------------------------------------ ------------------------------------------------------------------------ leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user Support Request -- http://leaf-project.org/
