On Mon, May 11, 2020 at 7:36 AM Reindl Harald <h.reindl@xxxxxxxxxxxxx> wrote:
>
>
>
> Am 11.05.20 um 12:20 schrieb Sơn Đỗ:
> > Do you guys have any idea to allow a certain website with a specific
> > MAC address ?
>
> that's not how the ip layer works
> you don't have any MAC adress after a router
>
What I read is that he wants to have an egress rule to block a
computer behind his router (private network) to reach youtube. If the
computer is in the same broadcast domain as the router, his request is
valid. I guess offending computer uses DHCP and he is looking for a
solution that accounts for that and expects user knows nothing about
MAC spoofing.
> don#t get me wrong but you need to learn the absolute basics about
> networking: https://en.wikipedia.org/wiki/OSI_model
>
> > Vào Th 2, 4 thg 5, 2020 vào lúc 21:00 John Haxby
> > <john.haxby@xxxxxxxxxx> đã viết:
> >>
> >>
> >>
> >>> On 4 May 2020, at 09:54, Lazuardi Nasution <mrxlazuardin@xxxxxxxxx> wrote:
> >>>
> >>> YouTube use SSL. So you can't match strings inside the packet, it is
> >>> encrypted.
> >>
> >> Actually, in most cases you can: the first packet set will usually have the hostname in the SNI extension header
