Originally posted by kemplej
What would I put in my rc.firewall to allow DHCP requests and answers into and out from a lan segment my firewall is guarding? IE: allow a outside router to push dhcp into a lan segement ?
do you mean that you want dhcp requests that hit the gateway on the lan interface to be forwarded to a dhcp server on the external network??
i think you can do that like this:
iptables -A PREROUTING -p UDP -i $LAN_IFACE --dport 67 --sport 68 -j DNAT \
iptables -A FORWARD -p UDP -i $LAN_IFACE -o $INET_IFACE --dport 67 \
--sport 68 -j ACCEPT