(FWD)linux, cable modem, and RCN

[Thorin]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

> Yup; did that, and had "tail -f"  running  on  /var/log/messages 
> and /var/log/debug.log  files.   When  I  ran the above pump
> command, the messages file got the two messages:
> 
> Feb 21 11:59:17 kendy kernel: Packet log: out REJECT eth0 PROTO=17
> 0.0.0.0:68 255.255.255.255:67 L=328 S=0x00 I=25251 F=0x0000 T=64
> (#6) Feb 21 11:59:17 kendy kernel: Packet log: out REJECT eth0
> PROTO=17 0.0.0.0:68 255.255.255.255:67 L=328 S=0x00 I=25252
> F=0x0000 T=64 (#6)  
> 

If you get a dynamic IP address for your ADSL or Cablemodem
connection, you
will need to add these lines.  

NOTE: Some distros change ipchains to NOT allow TCP connections for
DHCP.  Though TCP-based DHCP is really rare, it is part of of the
standard.  

Incoming Traffic from the External Interface:
/sbin/ipchains -A input -j ACCEPT -i $EXTIF -p udp -s $UNIVERSE
bootps -d $BROADCAST/0  bootpc
/sbin/ipchains -A input -j ACCEPT -i $EXTIF -p tcp -s $UNIVERSE
bootps -d $BROADCAST/0  bootpc

Outgoing Traffic on the External Interface:
/sbin/ipchains -A output -j ACCEPT -i $EXTIF -p tcp -s $UNIVERSE
bootpc -d $UNIVERSE bootps
/sbin/ipchains -A output -j ACCEPT -i $EXTIF -p udp -s $UNIVERSE
bootpc -d $UNIVERSE bootps

Set or replace the $EXTIF & $UNIVERSE (0.0.0.0) variables in your own
script.

- --Thorin

-----BEGIN PGP SIGNATURE-----
Version: PGP 7.0.1

iQA/AwUBOpR82PPIThw7+ik2EQKCAACg2joKMhdv1fgwqm0A0p88uhAad5cAoP7E
HTJUTWMRnl04FLQX0DamhiaH
=M2jx
-----END PGP SIGNATURE-----


-
Subcription/unsubscription/info requests: send e-mail with
"subscribe", "unsubscribe", or "info" on the first line of the
message body to discuss-request at blu.org (Subject line is ignored).