Try pre and post routing... It might be a start > -----Original Message----- > From: netfilter-bounces@xxxxxxxxxxxxxxxxxxx [mailto:netfilter- > bounces@xxxxxxxxxxxxxxxxxxx] On Behalf Of Claudio Lavecchia > Sent: Tuesday, November 30, 2004 4:54 AM > To: netfilter@xxxxxxxxxxxxxxxxxxx > Subject: iptables and wireless card in promiscuous mode > > Hello People, > > I have a little question: > > I have two laptops that have 802.11 wireless cards. I am developing some > application that essentially perform sniffing functions using wireless > cards in promiscuous mode. To test my code, I need those two laptops not > to "see" each other (--> I do not want the wireless card of laptop A, > which is operating in promiscuous mode to process packets coming from > laptop B) and I tought to do it using iptables. so on laptop A i added > the following rule: > > iptables -A INPUT -mac --mac-source MAC_ADDRESS_LAPTOP_B -j DROP > > and on laptop B I added the rule: > > iptables -A INPUT -mac --mac-source MAC_ADDRESS_LAPTOP_A -j DROP > > I just executed my first tests and the feeling I got is that, for > example, the wlan card of laptop B still passes through the packet > coming from laptop A. > > Can anyone confirm this analysis? If I am right, can anyone give me a > hint to possibly workaround this? > > Thank you very much > > Claudio
