Rogier Maas wrote:
Hi,
I have a SuSE 6.3 box running as a firewall at school. It has an ISDN dialup, and I protect it using ipchains. I've made a script that loads the rules, and everything works fine....
Until the IP number changes.
When the box dials in again, it gets a different IP number. The ipchains-rules however, remain on the other, obsolete address. How can I fix this? Now I have to make a choice. Either I resubmit the rules on the new IP, or I skip the firewalling stuff, thus letting others in...
Can anyone help me with this? Is there a script I can run *before* the dialing?
Thanks,
Rogier Maas
Hi Rogier, have a look at /etc/ppp/ip-up. this script is executed as soon as a new connect is made. there is an ip-up and ip-down "case" (the latter is executed after hangup) In this script the variable $LOCALIP (4th parameter) contains the new valid IP (last valid IP with ip-down), basicly to reset the routing (ip-down) to avoid some other dyn-ip caused ISDN trouble. I'd add / alter some rules from within that script. (In fact I do so, locking a "used" IP for some time to avoid redials by open sockets. Doesn't work in every case though...) Juergen -- =========================================== __ _ Juergen Braukmann juergen.braukmann@gmx.de| -o)/ / (_)__ __ ____ __ Tel: 0201-743648 dk4jb@db0qs.#nrw.deu.eu | /\\ /__/ / _ \/ // /\ \/ / ===========================================_\_v __/_/_//_/\_,_/ /_/\_\ -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/