Firewall Wizards mailing list archives

RE: Dual-homed firewall with DHCP on one of the interfaces.

From: Peter Capelli <pcapelli () nsec net>
Date: Wed, 24 Mar 1999 06:50:01 -0500

I think you may have misunderstood him - he doesn't *want* to use DHCP,
he is being forced to by his ISP.  A very common complaint, especially
for cable modem users.  It should be possible to have a firewall with a
DHCP address on one interface, as long as that interface does not have
to be trusted, or allow incoming traffic.

Pete Capelli - NSEC - pcapelli () nsec net 
"Those who would give up essential liberty for temporary safety deserve
neither liberty nor safety" - Benjamin Franklin, 1759
PGP Key ID:3AD72805 

-----Original Message-----
From: owner-firewall-wizards () nfr net
[mailto:owner-firewall-wizards () nfr net]On Behalf Of Keller, Dennis
Sent: Tuesday, March 23, 1999 2:23 PM
To: 'Daniel Knighten'; firewall-wizards () nfr net
Subject: RE: Dual-homed firewall with DHCP on one of the interfaces.
Importance: Low


Don't use DHCP for for your firewall.  Apply static addresses to all
interfaces on the firewall.  Your external address is your Internet
footprint and should remain constant as well as your internal address
should remain constant for internal users.  
Regards, 
Dennis Keller                                 
ADP Security Administrator 
DDSP-Z 
email: dkeller () ddc dla mil

Current thread:

Dual-homed firewall with DHCP on one of the interfaces. Daniel Knighten (Mar 23)
- Re: Dual-homed firewall with DHCP on one of the interfaces. Steve George (Mar 23)
- <Possible follow-ups>
- RE: Dual-homed firewall with DHCP on one of the interfaces. Cottrell, Ian (Mar 23)
  - Re: Dual-homed firewall with DHCP on one of the interfaces. Daniel Knighten (Mar 24)
- RE: Dual-homed firewall with DHCP on one of the interfaces. Keller, Dennis (Mar 23)
- RE: Dual-homed firewall with DHCP on one of the interfaces. Peter Capelli (Mar 24)