rules to permit only few MAC address

vladone vladone at llwb135.servidoresdns.net
Tue Jul 5 11:49:47 GMT 2005


I want to permit only few MAC address to pass on my gateway.
I put in my script this line:
ipfw -q -f flush
cmd="/sbin/ipfw -q"
oif="rl0"
pif="fxp1"

$cmd add 110 skipto 5000 MAC any 00:0e:a6:81:40:3e in via $pif
$cmd add 120 skipto 5000 MAC any 00:50:8b:6b:0c:b2 in via $pif
..............................................................
$cmd add 500 deny log MAC any any in via $pif

$cmd add 5000 divert natd all from any to any via $oif

but not work (block legitimate traffic). How i can do this job?




More information about the freebsd-ipfw mailing list