Hi,
Ive got a dhcp server on one network segment, 192.168.10.x, and my clients on another segment, 192.168.100.x . these are seperated by an iptables firewall on a multihomed machine. my problem is that when a machine on the .100 subnet sends a dhcp request to 255.255.255.255:67, i cant seem to make it forward to the 192.168.10.x segment. However, if i eventually get that far, will the dhcp server receive a proper arp reply for the client on another nic and network segment? should i be forwarding all arp between the two network segments? if so, how? i'd appreciate any help. right now im tying a firewall conf of:

iptables -t nat -I PREROUTING -i eth3 -p udp -s 0.0.0.0 --sport 68 -d 255.255.255.255 --dport 67 -j DNAT --to-destination 192.168.10.93

iptables -A INPUT -p udp --dport 67 -j ACCEPT

the dhcp machine accepts everything right now, it wont be locked down until i resolve this problem. thanks in advance for any help.

--paul

You need to install a DHCP forwarder on the firewall node. Or fake one with IPtables.... Mandrake and Red Hat both come with one packaged, you just need to load and start it.

Or check out this website. http://www-user.tu-chemnitz.de/~ensc/dhcp-fwd/

that looks like just what i need. thanks for the link and ill post results when i get them.

--paul

dhcrelay worked great. thanks for the help.

--paul