Date: Mon, 22 Jan 2001 09:48:36 -0500 (EST) From: "Dan Mahoney, System Admin" <freebsd@gushi.org> To: questions@freebsd.org Subject: IPFW Capabilities Message-ID: <Pine.BSF.4.21.0101220914450.97258-100000@prime.gushi.org>
next in thread | raw e-mail | index | archive | help
Hey all, I'm currently evaluating the feasibility of using a pure FreeBSD based solution versus ETInc's bandwidth manager, which I am considering purchasing. Can someone tell me if the following are possible: 1. Is there a way to make ipfw deny traffic by MAC address? (We have colocation customers, and are trying to prevent "stolen" IP addresses.) 2. Is there any way to set up a dual-NIC freeBSD box as a COMPLETELY TRANSPARENT bridge (meaning our customers will not have to change their gateway address, and meaning that the machine doing the bandwidth management/limiting/throttling will not show up on traceroutes? (I prefer this because it makes migration easier, and it also makes things more secure (as in, nobody will attack a router that doesn't show up on traceroutes). 3. Is there any way to graph the information shown by ipfw? Like MRTG? I think that's all. Thanks in advance, Dan Mahoney -- "There is no right and wrong, there is only fun and boring." -Fisher Stevens, "Hackers" --------Dan Mahoney-------- Techie, Sysadmin, WebGeek Gushi on efnet/undernet IRC ICQ: 13735144 AIM: LarpGM Web: http://prime.gushi.org finger danm@prime.gushi.org for pgp public key and tel# --------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0101220914450.97258-100000>