hello everybody.. I'ts a cold morning here in my country
, can anyone give me a helping hand on how to let iptables to allow dns & dhcp distributions from the server to the clients only w/out exposing the port dhcp port udp 67,68 and tcp port 67,68 as well from the outside world. DHCP only uses udp, but still I also allowed tcp ports as well just to be sure & also I already allow DNS ports in the firewall w/c is not inluded below. linux newbie here, I will really appreciate your help. so far this is what i've done..
I already issued the command below: Note: '#' stands for root
when i issued the command below to allow those ports only to the internal network the firewall still blocking it. what seems to be the problem??,
#iptables -A INPUT -m iprange --src-range 192.168.0.1-192.168.0.254 -p udp --dport 67 -j ACCEPT
#iptables -A INPUT -m iprange --src-range 192.168.0.1-192.168.0.254 -p udp --dport 68 -j ACCEPT
#iptables -A INPUT -m iprange --src-range 192.168.0.1-192.168.0.254 -p tcp --dport 68 -j ACCEPT
#iptables -A INPUT -m iprange --src-range 192.168.0.1-192.168.0.254 -p tcp --dport 68 -j ACCEPT
other question is?, when I tried to issue the command below it will allow those ports from going out the firewall but exposing those ports to the internet w/c is not recommended for me..
#iptables -A INPUT -p udp --dport 67 -j ACCEPT
#iptables -A INPUT -p udp --dport 68 -j ACCEPT
#iptables -A INPUT -p tcp --dport 67 -j ACCEPT
#iptables -A INPUT -p tcp --dport 68 -j ACCEPT
can anyone help me how to remedy this situation.. guys i dont want to use gui firewall configuration such as firestarter 0r textbase firewall such as shorewall on configuring the firewall.. I really want to learn how iptables works and I believe it will be worth the patience & practice in learning this. tnx in advance..
______________________________________________________________________
Patience is the key to success!