Date: Sun, 5 May 2002 12:21:42 +0200 From: Gerhard Sittig <Gerhard.Sittig@gmx.net> To: security@FreeBSD.ORG Subject: Re: fixed IP <-> MAC assignment (was: ipfw) Message-ID: <20020505122142.W1494@shell.gsinet.sittig.org> In-Reply-To: <20020505135655.A320@grosbein.pp.ru>; from eugen@D00015.dialonly.kemerovo.su on Sun, May 05, 2002 at 01:56:55PM %2B0800 References: <F93OUDxTcg2yWsqdiDu00006aa0@hotmail.com> <20020505135655.A320@grosbein.pp.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, May 05, 2002 at 13:56 +0800, Eugene Grosbein wrote: > > On Sat, May 04, 2002 at 08:36:52PM -0700, William J. Borskey wrote: > > > is it possible to write rules for ipfw using ethernet addresses instead of > > ip addresses? > > You can have frozen ARP table and use ip addresses for ipfw > to achieve the same effect. Check this out: > http://www.FreeBSD.org/cgi/query-pr.cgi?pr=kern/36373 Do you want to followup to PR conf/23063 which has the rc.network stuff to setup the static ARP table? In its current form it completely turns off ARP for the interface. You might want to do the sysctl operation instead. virtually yours 82D1 9B9C 01DC 4FB4 D7B4 61BE 3F49 4F77 72DE DA76 Gerhard Sittig true | mail -s "get gpg key" Gerhard.Sittig@gmx.net -- If you don't understand or are scared by any of the above ask your parents or an adult to help you. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020505122142.W1494>