RE: How to Block Mac Address ?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



I have done by adding two lines in my script and it is working
 
 
iptables -A FORWARD -j MACtest
iptables -A INPUT -j MACtest




George Vieira <georgev@xxxxxxxxxxxxxxxxxxxxxx> wrote:
I have learnt that mac address matching only worked in certain chains.. I think it was INPUT and FORWARD only but not sure.. and I don't know why this was the case..
 
try it on other chains and see the results.

Thanks,

 
____________________________________________
George Vieira
Citadel Computer Systems Pty Ltd Systems Manager georgev AT citadelcomputer DOT com DOT au
Citadel Computer Systems Pty Ltd
Phone : +61 2 9955 2644 HelpDesk: +61 2 9955 2698 http://www.citadelcomputer.com.au
 
 
-----Original Message-----
From: Mohammad Shakir [mailto:shakirz1@xxxxxxxxx]
Sent: Sunday, June 15, 2003 4:56 PM
To: netfilter@xxxxxxxxxxxxxxx
Subject: How to Block Mac Address ?

I want to block a mac address for this I complie this rule
but it is not working, any friend who can slove this problem.


#  Flush all Rules
/sbin/iptables --flush
/sbin/iptables --table nat --flush
/sbin/iptables --delete-chain
/sbin/iptables --table nat --delete-cha
/sbin/iptables -N MACtest

#  to block this MAC Address
/sbin/iptables -t filter -A FORWARD -j MACtest
/sbin/iptables -A MACtest -m mac --mac-source 00:02:55:EE:65:D8 -j DROP

#  for MASQUREADE
/sbin/iptables --table nat --append POSTROUTING -s 192.168.0.0/24 --out-interface ppp0 -j MASQUERADE

echo "1" > /proc/sys/net/ipv4/ip_forward


Do you Yahoo!?
SBC Yahoo! DSL - Now only $29.95 per month!


Do you Yahoo!?
SBC Yahoo! DSL - Now only $29.95 per month!

[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux