Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [FW1] FW-1, DHCP and xDSL

To: "'Patrick McCann'" <[email protected]>
Subject: RE: [FW1] FW-1, DHCP and xDSL
From: Harjot Sekhon <[email protected]>
Date: Wed, 4 Jul 2001 12:10:17 -0400
Cc: [email protected]
Sender: [email protected]

Hi Patrick,
 
   I have. Unfortunately, I have noticed the following:
        1) On Windows (NT/2000), once FW1 is installed, the DHCP client will
not start upon bootup. You can do a workaround by
            creating a batch file, which contains the following lines
(ofcourse, this script is under the impression that you have
            added the $FW_installation_path\bin to your environment path
variable):    
                   fw unload localhost
                   net start "dhcp client"
                   ipconfig /renew
                   fw fetch localhost
 
            *** you can modify the registry to execute this batch script
once you, as administrator logs in. I did not create this
                 script as a service (don't know how), thus it requires
manually intervention (execute the script upon logon by
                 registry change or manually execute once logged in). If
someone knows how to launch this as a service great.
 
        2) Linux has no problems with dhcp as long as eth0 is the once
facing the net. If not, do what I did :
              - create a startup script in /etc/rc.d/rc3.d/S51restart-dhcpcd
it contains :
                             dhcpcd <ethernet_interface_facing_the_net>
 
                    e.g.  dhcpcd eth1
 
             Ensure that your startup script comes before you execute the
firewall startup script which I believe is S99f??????.
 
  
  Note: In both scenario's, you must have a valid IP on your interfaces
(from dhcp), build you rulesets, install them prior to
          testing the reboot scenario. 
 
  Warning :  Pain in $#$#$#  if you IP changes, you have to manually unload
policy, get dhcp address, start firewall, fw ctl uninstall,
                  Fix objects.C, generate the .pf file (fw gen ?.W > ?.pf),
fwstop/fwstart.
 
                  If IP is the same, as on cable dhcp, you should not have
the above issue.
 
 
         E-mail me if any questions....
 
Harjot (Joe) Sekhon
CCSA, CCSE Certified
 
 
 
 
 -----Original Message-----
From: Patrick McCann [mailto:[email protected]]
Sent: Monday, July 02, 2001 4:08 PM
To: [email protected]
Subject: [FW1] FW-1, DHCP and xDSL



I was wondering if anybody has managed to get FW-1 working with a DHCP lease
instead of a static IP address.  I have a site which may be upgraded to an
ADSL cable modem connection which issues the connected FW with a DHCP Lease.
The FW-1 would then be used to Hide NAT all the internal hosts behing the
Address of the FW.
 
I know that when you create a Workstation object it needs a static address,
but was wondering if there is a way around this.
 
Many Thanks
 
Patrick.

This message was scanned by AT&T Canada IES (Security Provisioning) for viruses.  
This protection does not ensure this message is virus free, however every precaution possible has been taken on our part.

Prev by Date: [FW1] Log Errors KBuff
Next by Date: [FW1] Can't reach securemote clients from encryption-domain.
Previous by thread: [FW1] FW-1, DHCP and xDSL
Next by thread: RE: [FW1] FW-1, DHCP and xDSL
Index(es):
- Date
- Thread