I have done by adding two lines in my script and it is working
iptables -A FORWARD -j MACtest
iptables -A INPUT -j MACtest
George Vieira <georgev@xxxxxxxxxxxxxxxxxxxxxx> wrote:
iptables -A INPUT -j MACtest
George Vieira <georgev@xxxxxxxxxxxxxxxxxxxxxx> wrote:
I have learnt that mac address matching only worked in certain chains.. I think it was INPUT and FORWARD only but not sure.. and I don't know why this was the case..try it on other chains and see the results.Thanks,
George Vieira
Citadel Computer Systems Pty Ltd-----Original Message-----
From: Mohammad Shakir [mailto:shakirz1@xxxxxxxxx]
Sent: Sunday, June 15, 2003 4:56 PM
To: netfilter@xxxxxxxxxxxxxxx
Subject: How to Block Mac Address ?I want to block a mac address for this I complie this rule
but it is not working, any friend who can slove this problem.
# Flush all Rules
/sbin/iptables --flush
/sbin/iptables --table nat --flush
/sbin/iptables --delete-chain
/sbin/iptables --table nat --delete-cha
/sbin/iptables -N MACtest# to block this MAC Address
/sbin/iptables -t filter -A FORWARD -j MACtest
/sbin/iptables -A MACtest -m mac --mac-source 00:02:55:EE:65:D8 -j DROP# for MASQUREADE
/sbin/iptables --table nat --append POSTROUTING -s 192.168.0.0/24 --out-interface ppp0 -j MASQUERADEecho "1" > /proc/sys/net/ipv4/ip_forward
Do you Yahoo!?
SBC Yahoo! DSL - Now only $29.95 per month!
Do you Yahoo!?
SBC Yahoo! DSL - Now only $29.95 per month!
