Date: Wed, 12 Apr 2000 13:29:49 -0700 (PDT) From: John F Cuzzola <vdrifter@ocis.ocis.net> To: freebsd-questions@FreeBSD.ORG Subject: ip filtering Message-ID: <Pine.LNX.4.21.0004121318330.13839-100000@ocis.ocis.net>
next in thread | raw e-mail | index | archive | help
Hi There, I wonder if someone out their can help me out with a problem. We're a small ISP that is now offering ADSL service through a transparent bridge set up by our local telco. We have set up a firewall/dsl gateway computer between the DSL router and our LAN. The problem we have is if one of our customers accidently (or intentionally) configures their computer with the ip of another ADSL customer then both customer's machine's wont work because of the ip conflict. Even worse if they configured there machine with the same ip as the DSL gateway then it would affect all our DSL customers. We are planning on using DHCP to force an ip address on a particular NIC, However as I understand it, the customer is not forced to use DHCP and can still statically assign their ip. What I think I need is the ability to set-up firewall rules based on ip AND mac hardware address. This way any packets the dsl gateway receives that are not from the known ip/mac address pair could be dropped before it attempted to route the packet. Is this possible? or does anyone have a better suggestion. Thanks in advance, John To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.LNX.4.21.0004121318330.13839-100000>