Date: Wed, 15 Nov 2000 20:29:20 -0800 (PST)
From: "S.Toms"
Message-ID:
Subject: Re: firewall problem
On Wed, 15 Nov 2000, Damon Register wrote:
dr> Adi Gadwale wrote:
dr> >
dr> > I have always had problems similar to this. The solution I came up with
dr> > was to use the firewall that came with Roaring Penguin PPPOE rather than
dr> > enable the SuSE firewall.
dr> >
dr> >
dr> > On Tue, 14 Nov 2000, S.Toms wrote:
dr> >
dr> > > Just recently, yesterday, verizon went off line for a while. Anyway,
dr> > > when they came back online I couldn't get the dhclient to grab an address,
dr> > > both cards could talk to the internal if I switched around the config
dr> > > settings to swap the cards but no matter what, I couldn't get an address
dr> > > through dhclient.
dr> If this is what I think it is, there is no need to scrap the
dr> SuSE firewall. This seems very much like the problem I had
dr> some time ago and had a difficult time solving. I found just like
dr> you S. Toms that I could get a lease by disabling the firewall
dr> but then when the firewall is on, I could not get a lease.
dr> The problem was that the firewall was preventing my ISP's dhcp
dr> acknowledge from coming back to my system so the lease always
dr> failed. The failure involved ICMP and I found that in order to
dr> get dhcp to work with my ISP, I have to edit
dr> /etc/rc.config.d/firewall.rc.config and change item 17 to be
dr> FW_KERNEL_SECURITY="no"
dr> and then leases would work just fine.
dr>
dr> Would you please let me know if this works for you?
dr>
Well, it seemed to solve the problem. Then I switched it back to see
what would happen and it started working again. So now I'm not sure what
happened, but it now gives me something to try if it happens again. Any
idea what kind of security risks setting it to no and leaving it will
cause?
dr> Damon Register
dr>
dr>
--
S.Toms - tomas@primenet.com - www.primenet.com/~tomas
SuSE Linux v7.0+ - Kernel 2.2.17
Flugg's Law:
When you need to knock on wood is when you realize that the
world is composed of vinyl, naugahyde and aluminum.
