From owner-freebsd-questions@FreeBSD.ORG Fri Jul 23 01:20:45 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2600A16A4CE for ; Fri, 23 Jul 2004 01:20:45 +0000 (GMT) Received: from wolf.bytecraft.au.com (wolf.bytecraft.au.com [203.39.118.1]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6623043D46 for ; Fri, 23 Jul 2004 01:20:44 +0000 (GMT) (envelope-from murraytaylor@bytecraftsystems.com) Received: from localhost (localhost [127.0.0.1])i6N1Kg41038882; Fri, 23 Jul 2004 11:20:42 +1000 (EST) (envelope-from murraytaylor@bytecraftsystems.com) Received: from wolf.bytecraft.au.com ([127.0.0.1]) by localhost (wolf.bytecraft.au.com [127.0.0.1]) (amavisd-new, port 10024) with LMTP id 22563-07-3; Fri, 23 Jul 2004 11:20:42 +1000 (EST) Received: from svmarshal.bytecraft.au.com ([10.0.0.4])i6N1KOAF038864; Fri, 23 Jul 2004 11:20:24 +1000 (EST) (envelope-from murraytaylor@bytecraftsystems.com) Received: from wombat.bytecraft.au.com (Not Verified[10.0.0.3]) by svmarshal.bytecraft.au.com with MailMarshal (v5,0,3,78) id ; Fri, 23 Jul 2004 11:20:23 +1000 Received: from [10.0.17.42] (wstaylorm.dand06.au.bytecraft.au.com [10.0.17.42]) by wombat.bytecraft.au.com (Postfix) with ESMTP id EEAF63F0F; Fri, 23 Jul 2004 11:20:17 +1000 (EST) From: Murray Taylor To: Paul Hillen In-Reply-To: <2D5D66504FBF4E4FB3A199F121C862382D0915@exch1.nfmwe.com> References: <2D5D66504FBF4E4FB3A199F121C862382D0915@exch1.nfmwe.com> Content-Type: text/plain Organization: Bytecraft Systems Message-Id: <1090545617.22973.53.camel@wstaylorm.dand06.au.bytecraft.au.com> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.4.6 Date: Fri, 23 Jul 2004 11:20:17 +1000 Content-Transfer-Encoding: 7bit cc: freebsdquestions Subject: RE: Firewall, OpenVPN and Squid question X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 23 Jul 2004 01:20:45 -0000 If you run your own DHCP server then you can lock IP numbers via their MAC id there for the machines you trust. Then allow them appropriate access via ipf and corral the rest. (In DCHP create a 'pool' for others that uses a different section of your ip range) HTH mjt On Thu, 2004-07-22 at 23:51, Paul Hillen wrote: > Want to thank you guys for your help; I setup my first firewall last night. > Granted it is basic, and have a lot of work to do yet, but it's a start. It > is routing and letting my test machines access the web. > > Hopefully the last question (yeah right) > > I decided to use IPFILTER and appears to be easy enough - just have to get > use to the syntax. Does anyone know if IPFILTER can pass/block based on MAC > ADDRESS instead of just IP address. I can not find anything on Goggle unless > I am simply doing an incorrect query. > > Thanks again > Paul > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" > > **************************************************************** > This Email has been scanned for Viruses by MailMarshal. > **************************************************************** -- Murray Taylor Special Projects Engineer --------------------------------- Bytecraft Systems & Entertainment P: +61 3 8710 2555 F: +61 3 8710 2599 D: +61 3 9238 4275 M: +61 417 319 256 E: murraytaylor@bytecraftsystems.com or visit us on the web http://www.bytecraftsystems.com http://www.bytecraftentertainment.com --------------------------------------------------------------- The information transmitted in this e-mail is for the exclusive use of the intended addressee and may contain confidential and/or privileged material. Any review, re-transmission, dissemination or other use of it, or the taking of any action in reliance upon this information by persons and/or entities other than the intended recipient is prohibited. If you received this in error, please inform the sender and/or addressee immediately and delete the material. E-mails may not be secure, may contain computer viruses and may be corrupted in transmission. Please carefully check this e-mail (and any attachment) accordingly. No warranties are given and no liability is accepted for any loss or damage caused by such matters. --------------------------------------------------------------- **************************************************************** This Email has been scanned for Viruses by MailMarshal. ****************************************************************