ipfw & MAC Filtering
Christian Hiris
4711 at chello.at
Fri Jul 23 14:56:22 PDT 2004
On Friday 23 July 2004 23:21, Chris Knipe wrote:
> Lo all,
>
> Just very quickly...
>
> 00500 0 0 allow ip from any to any MAC 00:30:4f:27:0e:1a any via
> ath1
> 00501 0 0 allow ip from any to any MAC any 00:30:4f:27:0e:1a via
> ath1
>
> su-2.05b# arp -an
> ? (198.19.0.49) at 00:30:4f:27:0e:1a on ath1 [ethernet]
>
> su-2.05b# uname -sr
> FreeBSD 5.2.1-RELEASE-p9
>
> Why does it not see anything??
>
> Basically, I want to try and firewall any device on the network except for
> a specific list of MAC addresses.... However, I am lost because ipfw does
> not seem to even want to see the mac address?? :/
>
Have you set sysctl net.link.ether.ipfw=1 ?
br
ch
--
Christian Hiris <4711 at chello.at> | OpenPGP KeyID 0x941B6B0B
OpenPGP-Key at hkp://wwwkeys.eu.pgp.net and http://pgp.mit.edu
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: signature
Url : http://lists.freebsd.org/pipermail/freebsd-ipfw/attachments/20040723/64a46864/attachment.bin
More information about the freebsd-ipfw
mailing list