Add disclaimer to DHCP article

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@1075 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2004-01-11 19:24:05 +00:00 · 2004-01-11 19:24:05 +00:00 · a8898f2fe0
commit a8898f2fe0
parent 0e0d86cf21
1 changed files with 13 additions and 1 deletions
--- a/Shorewall-docs/dhcp.xml
+++ b/Shorewall-docs/dhcp.xml
@ -15,13 +15,15 @@
      </author>
    </authorgroup>

-    <pubdate>2002-11-03</pubdate>
+    <pubdate>2004-01-10</pubdate>

    <copyright>
      <year>2001</year>

      <year>2002</year>

+      <year>2004</year>
+
      <holder>Thomas M. Eastep</holder>
    </copyright>

@ -35,6 +37,16 @@
    </legalnotice>
  </articleinfo>

+  <note>
+    <para>For most operations, DHCP software interfaces to the Linux IP stack
+    at a level below Netfilter. Hence, Netfilter (and therefore Shorewall)
+    cannot be used effectively to police DHCP. The <quote>dhcp</quote>
+    interface option described in this article allows for Netfilter to stay
+    out of DHCP&#39;s way for those operations that can be controlled by
+    Netfilter and prevents unwanted logging of DHCP-related traffic by
+    Shorewall-generated Netfilter logging rules.</para>
+  </note>
+
  <section>
    <title>If you want to Run a DHCP Server on your firewall</title>