Date: Mon, 15 Aug 2005 23:17:11 +0200 From: Roland Smith <rsmith@xs4all.nl> To: vladone <vladone@spaingsm.com> Cc: freebsd-questions@freebsd.org Subject: Re: i can't block win98 computers Message-ID: <20050815211711.GB70491@slackbox.xs4all.nl> In-Reply-To: <534500571.20050815232810@spaingsm.com> References: <534500571.20050815232810@spaingsm.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--DKU6Jbt7q3WqK7+M Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Aug 15, 2005 at 11:28:10PM +0300, vladone wrote: > Hi! > I try to block some computers to acces my gateway based on MAC > address. > I use this ipfw rule: > ipfw add 100 deny mac any xx:yy:aa:bb:cc:dd in via $private_interface > With this i can block XP computers but not work with Win98. I dont > understand what is happened! As the ipfw manpage states, you can filter on layer-2 header fields (of which the MAC address is one) _where available_. It could be that Win98 doesn't correctly list the MAC address in the packets. You could try using tcpdump to check the packets. Roland --=20 R.F.Smith (http://www.xs4all.nl/~rsmith/) Please send e-mail as plain text. public key: http://www.xs4all.nl/~rsmith/pubkey.txt --DKU6Jbt7q3WqK7+M Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (FreeBSD) iD8DBQFDAQZXEnfvsMMhpyURAtxbAJ0UgI8pxz/cVB1H/hALXI+NJvFT7QCfaIDg 0lv+9XHf9woUnZYuyNsB4Ao= =ZPur -----END PGP SIGNATURE----- --DKU6Jbt7q3WqK7+M--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050815211711.GB70491>