| View previous topic :: View next topic |
| Author |
Message |
smtanner
Tux's lil' helper
Joined: 12 May 2002
Posts: 106
Location: Colorado
|
 Posted: Sat Apr 26, 2003 12:55 am Post subject: firestarter |
 |
|
I'm trying to get firestarter working. When I run the setup, I get an error message:
| Quote: | | No dhcp client configuration found. The firewall will not be loaded automatically on a lease renewel. Please make sure your external interface is configured properly or deselect the dhcp option if you are using static settings |
What client configuration is it talking about. I am using dhcp and my network access appears to working correctly. Not sure if there is a configuration file that it is looking for that I am missing or what.
thanks |
|
| Back to top |
|
 |
fatcat.00
Tux's lil' helper
Joined: 12 Aug 2002
Posts: 145
|
| Posted: Sat Apr 26, 2003 2:52 am Post subject: Not sure, but... |
|
|
Gentoo by default stores its dhcpc (dhcp"c" is for "client") in /etc/dhcpc. In there is a file that seems to contain active lease information (the .info file).
Now, whether Firestarter is using this file to track when you get a new lease from your ISP, I cannot say.
Here is the part inside the Firestarter-created (v0.8.2) script that seems to get the IP address:
| Code: | IF=eth0
INIF=eth1
IP=`/sbin/ifconfig $IF | grep inet | cut -d : -f 2 | cut -d \ -f 1`
|
Of course, this only works the first time the script is run, but somehow the firewall continues to work after the IP changes. I am unsure of the mechanism, but it doesn't appear to be anything Firestarter-specific. I suspect iptables somehow detects when an interface configured for DHCP changes IP addresses, if directed to do so.
That said, I will tell you that I am using Firestarter myself with a firewall that gets a periodic lease updates from my ISP. Firestarter seems to work well in this configuration, although I only use Firestarter to create an initial iptables script. I just edit the script afterwards to get exactly what I want.
Good Luck!
-- Fatcat |
|
| Back to top |
|
|
eyevee99
Apprentice
Joined: 16 Apr 2002
Posts: 239
|
| Posted: Sun Apr 27, 2003 11:43 pm Post subject: |
|
|
Are there any Firestarter/ipables howtos?
I'm no expert on Firewalls. I've previously been using a windows box as my "gateway" with Kerio Personal Firewall.
I now want to set my linux box up to have similar functionality. |
|
| Back to top |
|
|
fatcat.00
Tux's lil' helper
Joined: 12 Aug 2002
Posts: 145
|
| Posted: Tue Apr 29, 2003 2:17 am Post subject: Really no need for a HOWTO |
|
|
Firestarter is really quite simple to run, and it starts with pretty conservative and sane defaults.
Unless you are hosting a strange service or you are running with a DMZ (if you don't know, then you aren't), I think anyone new to iptables will find it a great way to start.
It is probably not suitable once you gain a certain degree of understanding about iptables, or when you want to do something more specific than providing firewall services for your outbound use.
Check out: http://firestarter.sourceforge.net
_________________
-- Fatcat |
|
| Back to top |
|
|
eyevee99
Apprentice
Joined: 16 Apr 2002
Posts: 239
|
|
| Back to top |
|
|
|
Networking & Security
