i have removed the DNAT rule and started DHCRELAY -i eth2 192.168.1.70 and rebooted the system that was able to get an IP via DHCP with the DNAT rule and it was not successful after the reboot. For some reason after DHCRELAY gets the request and tries to forward to the DHCP server it is not making it. ----- Original Message ----- From: "Antony Stone" <Antony@Soft-Solutions.co.uk> To: <netfilter@lists.netfilter.org> Sent: Tuesday, October 29, 2002 5:29 AM Subject: Re: DHCRELAY through IPTABLES Firewall > On Tuesday 29 October 2002 10:02 am, bigman@monster-solutions.net wrote: > > > and I have also looked into this further by putting a sniffer on my DHCP > > server. I see the request come in from the system that is getting an IP > > successfully, but I never see a request from the system that is failing. > > Both systems are on the same subnet so they should be using the same > > netfilter rules. > > Would I be right in guessing that the system which works already has a DHCP > address, and is either renewing it (before its lease runs out) or is > requesting the same address again (after the lease has run out), whereas the > system which fails has never had a DHCP address and is trying to get one for > the first time ? > > Antony. > > -- > > If the human brain were so simple that we could understand it, > we'd be so simple that we couldn't. >
