[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

rules to permit only few MAC address

To: freebsd-ipfw_(_at_)_freebsd_(_dot_)_org
Subject: rules to permit only few MAC address
From: vladone <vladone_(_at_)_llwb135_(_dot_)_servidoresdns_(_dot_)_net>
Date: Tue, 5 Jul 2005 14:50:04 +0300
Reply-to: vladone <vladone_(_at_)_llwb135_(_dot_)_servidoresdns_(_dot_)_net>

I want to permit only few MAC address to pass on my gateway.
I put in my script this line:
ipfw -q -f flush
cmd="/sbin/ipfw -q"
oif="rl0"
pif="fxp1"

$cmd add 110 skipto 5000 MAC any 00:0e:a6:81:40:3e in via $pif
$cmd add 120 skipto 5000 MAC any 00:50:8b:6b:0c:b2 in via $pif
..............................................................
$cmd add 500 deny log MAC any any in via $pif

$cmd add 5000 divert natd all from any to any via $oif

but not work (block legitimate traffic). How i can do this job?


_______________________________________________
freebsd-ipfw_(_at_)_freebsd_(_dot_)_org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw
To unsubscribe, send any mail to "freebsd-ipfw-unsubscribe_(_at_)_freebsd_(_dot_)_org"

Follow-Ups:
- Re: rules to permit only few MAC address
  - From: Robert Klein
- Re: rules to permit only few MAC address
  - From: Jon Simola

Prev by Date: corect order for ipfw rules
Next by Date: Re: rules to permit only few MAC address
Previous by thread: corect order for ipfw rules
Next by thread: Re: rules to permit only few MAC address
Index(es):
- Date
- Thread

Visit your host, monkey.org