From owner-freebsd-questions  Sat Jul  6 13:14:43 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id B594637B400
	for <freebsd-questions@freebsd.org>; Sat,  6 Jul 2002 13:14:40 -0700 (PDT)
Received: from news.lucky.net (news.lucky.net [193.193.193.102])
	by mx1.FreeBSD.org (Postfix) with ESMTP id CB5BA43E42
	for <freebsd-questions@freebsd.org>; Sat,  6 Jul 2002 13:14:37 -0700 (PDT)
	(envelope-from perl@ukrpost.net)
Received: (from mail@localhost)
        by news.lucky.net (8.Who.Cares/8.Who.Cares) id XFP21055
        for freebsd-questions@freebsd.org; Sat, 6 Jul 2002 23:14:34 +0300
        (envelope-from perl@ukrpost.net)
From: "Andrew Novikov" <perl@ukrpost.net>
To: freebsd-questions@freebsd.org
Subject: Re: when will this happen?
Date: Sat, 29 Jun 2002 23:21:32 +0300
Organization: Unknown
Message-ID: <afl4sd$5c5$1@news.lucky.net>
References: <Pine.LNX.4.44.0206291439080.2595-100000@westhost10.westhost.net.lucky.freebsd.questions>
Reply-To: "Andrew Novikov" <perl@ukrpost.net>
X-Trace: news.lucky.net 1025382094 5509 193.193.195.243 (29 Jun 2002 20:21:34 GMT)
X-Complaints-To: usenet@news.lucky.net
X-Sender: nik-k@carrier.kiev.ua
X-Priority: 3
X-Comment-To: William Palfreman
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
FL-Build: Fidolook Express 2001 UIExt. BuildID: 3BC00FAD (7/10/2001 11:17:49).
X-Newsreader: Microsoft Outlook Express 6.00.2600.0000
X-MSMail-Priority: Normal
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

Hello, William.
You wrote to Lord Raiden on Sat, 29 Jun 2002 19:47:19 +0000 (UTC):

 >>          Actually, I like that Idea.  I'm definitely interested too
 >> when  this will happen.  Plus, I'd be curious if IPFW also supported
 >> filtering my
 >> Mac Address.  If not, it should be something to consider.  IT would
 >> help  keep out pesky script kiddies who keep the same modem or nic
 >> card, but  constantly change IP's.  :)
 WP> How can this happen/be useful when almost all the time the people
 WP> you want to filter out are not on the same Ethernet network as you?
 WP> Remember, from the point of view of your Internet facing nic, almost
 WP> every IP address is the world is associated with only one MAC
 WP> address, that of your managed switch.

  But what if you have to limit users IN your network to some bandwidth
or prohibit some users use NAT (let them use proxy!) It's a problem
when you have dhcp.
  You can use arp -S <IP> <MAC> to force machine with given <MAC>
have <IP>. Even if another user will try to configure his machine to
have that <IP> he won't be able to use it.

With best regards, Andy Novikov.  E-mail: perl@ukrpost.net


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message