Date: Sat, 17 May 2003 14:40:43 +0200 (CEST) From: Vaclav Petricek <vaclav.petricek@mff.cuni.cz> To: freebsd-mobile@freebsd.org Subject: wi - filtering traffic between stations on the same AP Message-ID: <Pine.BSF.4.50.0305171405460.29459-100000@sec.ms.mff.cuni.cz>
next in thread | raw e-mail | index | archive | help
Hello I would like to be able to filter traffic between stations connected to a single AP. The AP should be used just for Internet access and not for communication between local stations. Reason: 1. I do not want the stations to use the AP as a retranslation point where they do not see each other directly 2. I want to limit the traffic generated by windows broadcasts etc. I have seen in the wi driver that when the packet is destined for an associated station, or it is a broad/multi/cast it gets retransmitted immediatelly. My questions are: 1. Is there a way to force these packets to go through ipfw without patching kernel? I have seen some sysctls that should control the ethernet level filtering but I had no luck making it work on a single wi interface. A pointer describing the data flow between interface kernel modules, kernel and firewall modules would be great. 2. In case I do have to make a patch to implement this filtering, what is the best way to encapsulate it? Some flag to ifconfig that says drop broadcasts and do not resend packets to associated stations? Thanks for any hints, -- Vaclav Petricek
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.50.0305171405460.29459-100000>