jlporter.com

To get firehol working I needed to add the netfilter modules or compile them into the kernel. I choose to compile them into the kernel since I was upgrading my kernel to 2.6.27.9

The next overall step is to setup your /etc/firehol/firehol.conf file.

Mine goes something like this:

version 5
lan_ips="192.168.1.0/24"

interface eth1 lan
policy reject
server "icmp ssh dhcp dns http" accept
client all accept

interface eth0 internet
server "http ssh" accept
client all accept

router home2internet inface eth1 outface eth0

dhcpd.conf in /etc/dhcp

for a typical lan setup you can use something like this

subnet 192.168.1.0 netmask 255.255.255.0 {
range 192.168.1.15 192.168.1.35;
option routers 192.168.1.1;
}

option domain-name-servers 208.67.222.222, 208.67.220.220;