I have given a little more thought to my project involving getting my ZyXEL VMG 1312-B10A modems to be able to have some access to the internet. This would be done by going back through the Firebrick firewall-router, not accessing the internet independently as that would be a security disaster, so all access would be heavily restricted and behind the usual firewalling.
I managed to get DNS to work by the magic invocation
dns config static 192.168.n.254
where n is 1, 2, 3, 4 as each modem is numbered. That IP address refers to the Firebrick itself. Because the Firebrick is a local relay DNS caching server, that is all that is needed to get DNS access working for the modems, and no internet access is even needed.
This command though is not persistent. Is there an alternative method that would survive a reboot? Or any way of adding scripts into the boot sequence? (Without reflashing the machine of course, which would be cheating.)
I was thinking once more about getting NTP access to work. I wondered if I could achieve this without getting real internet access going by using a similar strategy. I assign another address, say 192.168.n.250 and tell the modem that this address is the NTP server. I then get the Firebrick to redirect traffic going to that address to the ISP’s NTP server and the return path gets handled by the Firebrick’s NAT function. I don’t know what the magic runes required for the Firebrick are to set that up, but I can try my best guess, mention NAT to it and see if it gets the hint to do the right thing automagically. Does that sound feasible?