problem with mac option on ipfw rule
h bagade
bagadeh at gmail.com
Sun Aug 5 09:10:42 UTC 2012
Hi all,
I have problem with setting mac option on ipfw rule. I want to drop all
traffic but the traffic with source mac for example 11:22:33:44:55:66. I
thought it would be possible using the not option to do the work and I have
a set of rules like this:
ipfw -q add 500 set 6 skipto 501 from any to any { not mac any
11:22:33:44:55:66}
ipfw -q add 501 set 6 drop altq test all from any to any
ipfw -q add 500 set 6 allow all from any to any
I expect it to drop traffic that src mac is not 11:22:33:44:55:66, but it
doesn't work! I've checked it for traffic with and without
src-mac: 11:22:33:44:55:66 and all dropped!
Could anyone tell me what's wrong with my understanding?
More information about the freebsd-net
mailing list