I think ipset is a good idea. # ipmap The ipmap set type uses a memory range, where each bit represents one IP address and can store up to 65535 (B-class network) entries. You can store same size network addresses in an ipset as well and an IP address will be in the set if the network address it belongs to can be found in the set. # macipmap The macipmap set type uses a memory range, where each 8 bytes represents one IP and a MAC addresses. A macipmap set type can store up to 65535 (B-class network) IP addresses with MAC. Look http://ipsec.netfilter.org Att, Sp0oKeR On 8/29/05, Sebastião Antônio Campos (GWA) <sa.campos@xxxxxxxxxxxxxxxx> wrote: > Dears, > > I'd like to allow access only to some sites by some mac address. > > For example: > > I have a list of the mac address 00:0c:6E:11:E8:B0, 00:D8:02:D8:C8:DF, > 00:E7:05:C9:07:EA............ and and I'd like that only these mac address > could access only the following IP: 200.221.2.128, 200.221.2.129, > 200.221.2.130, 200.221.2.131, 200.205.144.75, 200.205.144.76. But the other > mac address could access everything. > > How is the better way to do this?? > > Thks > > > >
