DSL/ipchains

[unix g]

Greetings,
  I have a box w/RH6 that boots eth1 DHCP with a 10BT
connection to a DSL modem. I have eth0 configured for
a 192.168 network. I would like to disallow
connections to eth1 interface but allow any
connections out.

 I attempted something simple such as...

ipchains -A input -p tcp -i eth1 -j ACCEPT !y
 
 However dhcp didn't work upon reboot due to the
ipchains rule(I know, I know... gun, foot, shoot)

Any suggestions for better security without doing
ipchains rules for individual ports/services? Or, a
good trick for allowing bootpc services in a secure
way?

--- Ironclaw <irnclw69 at swbell.net> wrote:
> Todd Skoog wrote:
> > 
> > I have setup a Linux machine as a firewall/gateway
> to the internet using a modem and I
> > intend to try DSL soon.  If I'm not mistaken the
> DSL modem is connected to the Linux box
> > via an ethernet link...  The only questionable
> item is how linux deals with the dynamic ip
> assignment
> > issues...
> 
> From what I know, it gets configured on one of your
> eternet adapters
> through the net card and you have to load dhcpcd so
> that you can get you
> IP through DHCP ... I'm pretty sure there's a howto
> on ADSL by now.
> 
> Ray Schwamberger
> irnclw69 at swbell.net
> > 
> > >>> Oran <oran at phunnies.org> 10/13/99 01:22PM >>>
> > ...     Does anyone have any experience using a
> Linux box as an Internet gateway
> > ...connected to an ADSL line?  Heck, does anyone
> have a Linux box connected to
> > ...an ADSL line?  I just wanted to know how
> difficilt or easy that sets up
> > ...
> > ...Thanks,
> > ...
> > ...Gene Dascher
> > ...Systems Developer
> > ...Multi Service
> > ...(913) 663-9415
> > ...gedascher at multiservice.com
> <mailto:gedascher at multiservice.com>
> > ...

=====

__________________________________________________
Do You Yahoo!?
Bid and sell for free at http://auctions.yahoo.com