I have
learnt that mac address matching only worked in certain chains.. I think it was
INPUT and FORWARD only but not sure.. and I don't know why this was the
case..
try it
on other chains and see the results.
Thanks,
George Vieira
Citadel Computer Systems Pty Ltd
-----Original Message-----
From: Mohammad Shakir [mailto:shakirz1@xxxxxxxxx]
Sent: Sunday, June 15, 2003 4:56 PM
To: netfilter@xxxxxxxxxxxxxxx
Subject: How to Block Mac Address ?
From: Mohammad Shakir [mailto:shakirz1@xxxxxxxxx]
Sent: Sunday, June 15, 2003 4:56 PM
To: netfilter@xxxxxxxxxxxxxxx
Subject: How to Block Mac Address ?
I want to block a mac address for this I complie this rule
but it is not
working, any friend who can slove this problem.
# Flush all Rules
/sbin/iptables --flush
/sbin/iptables
--table nat --flush
/sbin/iptables --delete-chain
/sbin/iptables --table
nat --delete-cha
/sbin/iptables -N MACtest
# to block this MAC Address
/sbin/iptables -t filter -A FORWARD -j
MACtest
/sbin/iptables -A MACtest -m mac --mac-source 00:02:55:EE:65:D8 -j
DROP
# for MASQUREADE
/sbin/iptables --table nat --append POSTROUTING -s
192.168.0.0/24 --out-interface ppp0 -j MASQUERADE
echo "1" > /proc/sys/net/ipv4/ip_forward
Do you Yahoo!?
SBC Yahoo! DSL - Now only $29.95 per month!
