Date: Sat, 21 Aug 2004 12:11:36 -0400 From: Chuck Swiger <cswiger@mac.com> To: freebsd-questions@freebsd.org Cc: Wayne M Barnes <wayne@etaq.com> Subject: Re: dhcpd MAC filter Message-ID: <41277438.5090908@mac.com> In-Reply-To: <447jrsa4ud.fsf@be-well.ilk.org> References: <20040820172222.GA65972@etaq.com> <41263C76.7070102@mac.com> <20040820224717.GA66583@etaq.com> <447jrsa4ud.fsf@be-well.ilk.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Lowell Gilbert wrote:
[ ... ]
> Sounds like you're running the original IPFW rather than IPFW2. As
> Chuck Swiger indicated, you need IPFW2 for the MAC keyword. IPFW2 is
> standard on FreeBSD 5.x, but not earlier.
Note the syntax Wayne was using-- the MAC stuff needs to be specified as an
option, as in:
ipfw add drop all from any to any mac any 00:02:2d:2e:04:28
...rather than:
#from man ipfw: MAC 10:20:30:40:50:60/33 any
ipfw add drop all from MAC 00:02:2d:2e:04:28 to any
[ This is not very intuitive or documented via an example in the ipfw manpage,
but any particular MAC address may correspond with zero, one, or many IP
addresses.... ]
--
-Chuck
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?41277438.5090908>