From owner-freebsd-questions@FreeBSD.ORG  Fri Jul 30 12:30:56 2010
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 88CC3106564A
	for <freebsd-questions@freebsd.org>;
	Fri, 30 Jul 2010 12:30:56 +0000 (UTC)
	(envelope-from b.smeelen@ose.nl)
Received: from mail.ose.nl (mail.ose.nl [212.178.134.164])
	by mx1.freebsd.org (Postfix) with ESMTP id 29ADF8FC15
	for <freebsd-questions@freebsd.org>;
	Fri, 30 Jul 2010 12:30:55 +0000 (UTC)
Received: from localhost ([127.0.0.1]) by mail.ose.nl
	for freebsd-questions@freebsd.org; Fri, 30 Jul 2010 14:30:54 +0200
Message-ID: <4C52C5FE.5030109@ose.nl>
Date: Fri, 30 Jul 2010 14:30:54 +0200
From: Bas Smeelen <b.smeelen@ose.nl>
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US;
	rv:1.9.1.11) Gecko/20100713 Thunderbird/3.0.6
MIME-Version: 1.0
To: freebsd-questions@freebsd.org
References: <BLU0-SMTP101EE0EB35631182688E5DB93AA0@phx.gbl>
	<4C52BE66.1000908@ose.nl>
In-Reply-To: <4C52BE66.1000908@ose.nl>
Content-Type: text/plain;
	charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Subject: Re: IPFW with MAC address configuration
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 30 Jul 2010 12:30:56 -0000


=3E On 07/30/2010 01=3A18 PM=2C Carmel wrote=3A
=3E  =20
=3E=3E I am trying to set up a rule using IPFW that utilizes a MAC address=

=3E=3E rather than an IP one=2E
=3E=3E
=3E=3E ipfw -q allow log tcp from MAC 00-14-A4-43-8E-BA to me 137 in via nf=
e0 setup keep-state
=3E=3E
=3E=3E Would that work=2C assuming the machine I want to allow access has t=
hat
=3E=3E MAC address=3F
=3E=3E
=3E=3E  =20
=3E=3E    =20
=3E According to the manual =28man ipfw=29 I guess the rule would something=
 like=3A
=3E ipfw add 1000 allow log tcp MAC any 00=3A14=3AA4=3A43=3A8E=3ABA/33 to m=
e 137 in
=3E via nfe0 setup keep-state    =20
To match this mac address exactly it should have MAC any
00=3A14=3AA4=3A43=3A8E=3ABA/48
I=27m not sure about this


DISCLAIMER=3A This e-mail is for the intended recipient=28s=29 only=2E Acce=
ss=2C disclosure=2C copying=2C
distribution or reliance on any of it by anyone else is prohibited=2E If yo=
u have received it
by mistake please let us know by reply and then delete it from your system=
=2E