From owner-freebsd-questions@FreeBSD.ORG  Thu Jan 25 14:22:34 2007
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 0D0A216A401
	for <freebsd-questions@freebsd.org>;
	Thu, 25 Jan 2007 14:22:34 +0000 (UTC) (envelope-from kdk@daleco.biz)
Received: from ezekiel.daleco.biz (southernuniform.com [66.76.92.18])
	by mx1.freebsd.org (Postfix) with ESMTP id C2DC713C459
	for <freebsd-questions@freebsd.org>;
	Thu, 25 Jan 2007 14:22:33 +0000 (UTC) (envelope-from kdk@daleco.biz)
Received: from [192.168.2.2] (archangel.daleco.biz [69.27.145.126])
	by ezekiel.daleco.biz (8.13.4/8.13.1) with ESMTP id l0PEMNQp071190;
	Thu, 25 Jan 2007 08:22:25 -0600 (CST) (envelope-from kdk@daleco.biz)
Message-ID: <45B8BD19.8080705@daleco.biz>
Date: Thu, 25 Jan 2007 08:22:17 -0600
From: Kevin Kinsey <kdk@daleco.biz>
User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US;
	rv:1.8.0.7) Gecko/20060925 SeaMonkey/1.0.5
MIME-Version: 1.0
To: Tek Bahadur Limbu <teklimbu@wlink.com.np>
References: <20070125154549.236dca3f.teklimbu@wlink.com.np>
In-Reply-To: <20070125154549.236dca3f.teklimbu@wlink.com.np>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Cc: freebsd-questions@freebsd.org
Subject: Re: Blocking traffic by Mac address using IPFW
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Jan 2007 14:22:34 -0000

Tek Bahadur Limbu wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> 
> Dear All,
> 
> I need some help regarding using IPFW to block specific MAC addresses.
> How do I block incoming traffic by a MAC address instead of an IP
> address.
> 
> Can this be done using IPFW? Since I am quite new to FreeBSD, can
> somebody shed some light on this issue?

Yes, it appears that ipfw(8) can do this --- check the manpage (quite a 
ways down, in the RULE OPTIONS section [ about byte 45000] for full 
details; note also that there may be other issues involved.  Here is a 
short thread on the subject from a couple of years ago:

http://lists.freebsd.org/pipermail/freebsd-ipfw/2004-September/001375.html

Disclaimer: IANAE, and don't play one on television ;-)

HTH,

Kevin Kinsey
-- 
Heisenberg may have been here.