Re: [PLUG] iptables question

Michael C. Toren on 7 Mar 2004 03:10:02 -0000

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] iptables question

From: "Michael C. Toren" <mct@toren.net>

To: plug@lists.phillylinux.org

Subject: Re: [PLUG] iptables question

Date: Sat, 6 Mar 2004 22:09:36 -0500

Reply-to: plug@lists.phillylinux.org

Sender: plug-admin@lists.phillylinux.org

On Sat, Mar 06, 2004 at 09:53:42PM -0500, John Lavin wrote: > Hi all - want to set up a pretty locked down couple of iptables rules to > block all traffic except for a few specific mac addresses for a wireless > hub. Try something along the lines of the following: # Do not forward by default iptables -P FORWARD DROP # Forward for specific MAC addresses iptables -A FORWARD -i eth1 -m mac --mac-source C0:FF:EE:C0:FF:EE -j ACCEPT iptables -A FORWARD -i eth1 -m mac --mac-source DE:AD:BE:EF:DE:AD -j ACCEPT However, please keep in mind that MAC addresses are spoofable... HTH, -mct ___________________________________________________________________________ Philadelphia Linux Users Group -- http://www.phillylinux.org Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug

References:

[PLUG] iptables question
From: John Lavin <jlavin@wayreth.net>

Prev by Date: [PLUG] iptables question

Next by Date: Re: [PLUG] iptables question

Previous by thread: [PLUG] iptables question

Next by thread: Re: [PLUG] iptables question

Index(es):

Date

Thread