Re: Passing DHCP through a Hotbrick

From: Michael A. Covington (look_at_www.covingtoninnovations.com.for.address)
Date: 06/13/04

  • Next message: David Qunt: "Re: Firewall log analysis" 
    Date: Sun, 13 Jun 2004 17:06:53 -0400

    "John D Loop" <jdloop@remove.bellsouth.net> wrote in message
    news:Vb2zc.2454$lr2.269@bignews2.bellsouth.net...
    >
    >
    >
    > "Michael A. Covington" <look@www.covingtoninnovations.com.for.address>
    wrote
    > in message news:GoSdnUWuZZ15_1fdRVn-vw@speedfactory.net...
    > >
    > > "Lars M. Hansen" <badnews@hansenonline.net> wrote in message
    > > news:7sgkc0lvu8chj71p4if0or81c5guu0j1tu@4ax.com...
    > > > On Fri, 11 Jun 2004 19:29:50 -0400, Michael A. Covington spoketh
    > > >
    > > > >Greetings,
    > > > >
    > > > >Exactly how do you set up a Hotbrick firewall so that the machines
    > behind
    > > it
    > > > >will be DHCP-served by the campus main DHCP server (out on the WAN)
    > > rather
    > > > >than the Hotbrick?
    > > > >
    > > > >Thanks!
    > > > >
    > > > >
    > > >
    > > > You can't. As far as I can tell from hotbricks' website, there's no
    > > > support for DHCP relay.
    > >
    > >
    > > That is very sad news, if true. I was mis-advised and may end up
    swapping
    > > this firewall to a department that can use it.
    > >
    > > Opening up UDP ports 67 and 68 won't do it? Admittedly I was
    unsuccessful
    > > with that, but I thought I had left out some detail.
    > >
    > > Also, Hotbrick *does* allow me to stop the firewall from being a DHCP
    > > server. I suppose I could hard-code the IP addresses into all the
    > > computers... but that would deprive us of the benefits of the campus
    DHCP
    > > server, such as its ability to update the list of nameservers
    dynamically.
    > >
    > >
    > Bridged networks are not much fun in a large installation. Just wait till
    > somebody turns up a rogue DHCP server!
    > Or steals IP addresses!
    > Good luck!

    Understood. We are being told to use our campus DHCP server. Myself, I can
    see a strong place for using the Hotbrick as intended (NATting the entire
    network).

  • Next message: David Qunt: "Re: Firewall log analysis"

    Relevant Pages

    • Re: >>Two XPs cant see each other<<
      ... >have permission to use this network resource. ... >Connection Firewall has been disabled on both of the XPs ... >IPs for my Pro and 2k. ... Obviously there is a DHCP server somewhere, ...
      (microsoft.public.windowsxp.network_web)
    • Re: A transparent content filter
      ... will include at least one DHCP server. ... Debian has everything you need. ... none of which are "firewall". ... except for rare configuration changes. ...
      (comp.os.linux.misc)
    • XPsp2 firewall - bug? - disables on certain networks
      ... We deploy firewall settings via GPO. ... The Standard setting is "Windows Firewall On". ... Windows XPsp2 firewall determines connection state via the DNS suffix ... This is usually proved by the DHCP server. ...
      (comp.security.firewalls)
    • XPsp2 firewall - bug? - disables on certain networks
      ... We deploy firewall settings via GPO. ... The Standard setting is "Windows Firewall On". ... Windows XPsp2 firewall determines connection state via the DNS suffix ... This is usually proved by the DHCP server. ...
      (microsoft.public.windowsxp.security_admin)
    • RE: Limited or no connectivity...PLEASE HELP!
      ... Yeah I first posted in the XP general and in the Network/web forum but didn't ... I think it is definitely to do with the DHCP server, ... firewall is already off though. ... > lower level than Windows -Windows hasn't loaded at this point. ...
      (microsoft.public.windows.server.active_directory)