Date: Fri, 27 Apr 2001 23:53:30 +0000 (GMT) From: Kris Kirby <kris@catonic.net> To: Rick Duvall <maillist@coastsight.com> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: IPFW and MAC Addresses Message-ID: <Pine.BSF.4.21.0104272351550.78554-100000@spaz.huntsvilleal.com> In-Reply-To: <Pine.BSF.4.21.0104271627330.46277-100000@ns1.coastsight.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, 27 Apr 2001, Rick Duvall wrote: > Is there a way to do IPFW on a MAC Address level? What I am wanting is to > only allow certain NIC's to pass packets to the Internet, as long as those > specific NICs have a certain IP address. How about this: Load the kernel's arp cache with fixed entries per MAC linking the MAC to the IP (until a flush) then IPFW the flow. Unless they can impersonate the MAC address, they won't be able to use that IP. ----- Kris Kirby, KE4AHR | TGIFreeBSD... 'Nuff said. <kris@nospam.catonic.net> | ------------------------------------------------------- "Fate, it seems, is not without a sense of irony." To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0104272351550.78554-100000>