IceFloor has helped me to rebuild a firewall for blocking specific ports after Apple took the GUI away in Server 10.8. Unfortunately, with it turned on, I have problems connecting wireless devices to our network.
Our server is connected to the internet via a Netgear wireless router. The DHCP server on the router is disabled and instead we use the DHCP server bulit into Mac OS X Server 10.8.
Clients connected to the LAN via ethernet get an IP address from the DHCP server, no problem.
However clients which connect to the wireless router do not get an IP address from the server when IceFloor is turned on. It works fine with IceFloor turned off.
The server is on 10.0.0.201 and I have a 'local' address group which includes 10.0.0.0/24. This address group is associated with Essential system services which includes ports 67 & 68 (all protocols) - I understand that these are the ones needed for DHCP.
The log shows lots of the following:
Mar 10 19:37:26 mail.ferry-marina.co.uk pf[46237]: 00:00:01.706581 rule 9/0(match): block in on en0: 0.0.0.0.68 > 255.255.255.255.67: BOOTP/DHCP, Request from 3c:07:54:5c:dc:20, length 300
this suggests to me that the DHCP requests from wireless clients are being blocked by the firewall.
I've added 0.0.0.0 to the local address list to see if that made a difference, and it didn't.
Please can you help?