ipfilter and Jumpstart

To:	ipfilter@coombs.anu.edu.au
Subject:	ipfilter and Jumpstart
From:	"Jeff A. Earickson" <jaearick@colby.edu>
Date:	Wed, 29 Nov 2006 15:01:58 -0500 (EST)
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	ipfilter-list@securepoint.com
Sender:	owner-ipfilter@coombs.anu.edu.au

Hi,

Has anybody ever figured out the trick to getting Jumpstart to work
when ipfilter is running?  I always have to drop my ipfilter rules
on my Jumpstart server for the client (netboot) system to be able to
going.  I did some snoop action, and I saw multicast and broadcast

stuff going by (without ipfilter in the way), so I added thefollowing to my ruleset:


block in  all
block out all
#---take anything in/out via multicast and broadcast for Jumpstart
pass in  from 255.255.255.255 to 137.146.28.80
pass out from 137.146.28.80   to 255.255.255.255
pass in  from 224.0.0.0/3   to 137.146.28.80
pass out from 137.146.26.80 to 224.0.0.0/3

where 137.146.26.80 is the IP of the host (Jumpstart server).
What's the trick?

Jeff Earickson
Colby College

<Prev in Thread]	Current Thread	[Next in Thread>
ipfilter and Jumpstart, Jeff A. Earickson <= Re: ipfilter and Jumpstart, Phil Dibowitz Re: ipfilter and Jumpstart, Vincent Fox Re: ipfilter and Jumpstart, Jeff A. Earickson

Previous by Date:	Re: IP Filter and IPMP on Solaris 10 (ipf 3.0.4, pfil 2.1.4), Jeff A. Earickson
Next by Date:	Re: ipfilter and Jumpstart, Phil Dibowitz
Previous by Thread:	IP Filter and IPMP on Solaris 10 (ipf 3.0.4, pfil 2.1.4), Stuart Remphrey
Next by Thread:	Re: ipfilter and Jumpstart, Phil Dibowitz
Indexes:	[Date] [Thread] [Top] [All Lists]