Date: Sat, 25 Dec 2004 22:48:54 +0100 From: =?ISO-8859-2?Q?=A3ukasz_Bromirski?= <lukasz@bromirski.net> To: freebsd-ipfw@freebsd.org Subject: IP rule to log also source MAC Message-ID: <41CDE046.1090706@bromirski.net>
next in thread | raw e-mail | index | archive | help
Hi, I wonder if the `log' keyword for ipfw could be extended to also log MAC-address of packet originator. Something like `log-input' on Cisco boxes, where You get also MAC of sender. It would be useful in scenarios, where You have spoofed traffic incoming on Ethernet interface, and IP source addresses are faked, spoofed etc. ..ie, when You have: deny log ip from any to any not verrevpath in via xl0 something like: deny log-input ip from any to any not verrevpath in via xl0 ...to get also source MAC-address. -- this space was intentionally left blank | Łukasz Bromirski you can insert your favourite quote here | lukasz:bromirski,net
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?41CDE046.1090706>