From owner-freebsd-questions@FreeBSD.ORG  Sat Jan  8 13:58:03 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id DA32B16A4CE
	for <freebsd-questions@freebsd.org>;
	Sat,  8 Jan 2005 13:58:03 +0000 (GMT)
Received: from wproxy.gmail.com (wproxy.gmail.com [64.233.184.193])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 7681943D2D
	for <freebsd-questions@freebsd.org>;
	Sat,  8 Jan 2005 13:58:03 +0000 (GMT)
	(envelope-from heath0504@gmail.com)
Received: by wproxy.gmail.com with SMTP id 58so21427wri
	for <freebsd-questions@freebsd.org>;
	Sat, 08 Jan 2005 05:58:03 -0800 (PST)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws;
	s=beta; d=gmail.com;
	h=received:message-id:from:to:subject:date:mime-version:content-type:content-transfer-encoding:x-priority:x-msmail-priority:x-mailer:x-mimeole;
	b=hfmlkdxN+puV75VLBWipagVuXRoex2eoW89A/3RLn6VXoHIjLdVwccUQ0Y6KbwX4X5Id2PcyxZQtOexPEgHLfNLQxjfAzzyH23y6Sw9B6uH+KyeX+fmnXPjKlsEUO71ga9VMtOdYkoiqL8XZAeKXZEV7vApDMlLBkjBAIvAhqdU=
Received: by 10.54.27.65 with SMTP id a65mr20161wra;
        Sat, 08 Jan 2005 05:58:02 -0800 (PST)
Received: from linuxlmx20ji5l ([61.59.129.248])
        by smtp.gmail.com with ESMTP id 44sm182364wri.2005.01.08.05.58.00;
        Sat, 08 Jan 2005 05:58:02 -0800 (PST)
Message-ID: <008f01c4f58a$1849d3c0$f8813b3d@linuxlmx20ji5l>
From: "heath, Chia Hui Chen" <heath0504@gmail.com>
To: <freebsd-questions@freebsd.org>
Date: Sat, 8 Jan 2005 21:58:09 +0800
MIME-Version: 1.0
Content-Type: text/plain;
	charset="big5"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2800.1437
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1441
Subject: Re: ipfw + MAC nothing happens?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 08 Jan 2005 13:58:04 -0000

my ipfw rules is:

00050 divert 8668 ip from any to any via fxp0
00100 allow ip from any to any via lo0
00200 deny ip from any to 127.0.0.0/8
00300 deny ip from 127.0.0.0/8 to any
00500 deny tcp from any to any dst-port 443 MAC any 00:e0:18:62:xx:xx
65000 allow ip from any to any
65535 deny ip from any to any

----- Original Message ----- 
From: heath, Chia Hui Chen 
To: freebsd-questions@freebsd.org 
Sent: Saturday, January 08, 2005 9:22 PM
Subject: ipfw + MAC nothing happens?


Hello,
I use FreeBSD 5.2.1 as NAT.
I wanna limit the 443 port of a computer based on MAC address.
So I use ipfw.
# ipfw add 500 deny tcp from any to any 443 MAC any 00:e0:18:62:xx:xx
But nothing happens, can anybody tells me why?
Thanks for your response.

Best Regards,
- heath