Silly IPFW question.
Chuck Swiger
cswiger at mac.com
Mon Sep 24 14:44:09 PDT 2007
On Sep 24, 2007, at 2:33 PM, Grant Peel wrote:
> Is there anyway to make a rule in IPFW that will match MAC
> addresses instead of IP or port numnbers (and no, I didnt see
> anything in the docs :-))
Search "man ipfw" for MAC. Something like this will:
ipfw add 10 deny MAC any 10:20:30:40:50:60
...block any traffic from that ethernet address. Be aware of the
net.link.ether.ipfw sysctl needed and advice in the section "PACKET
FLOW".
--
-Chuck
More information about the freebsd-questions
mailing list