Date: Mon, 19 May 2003 22:42:39 -0700 From: Matt Peterson <matt@peterson.org> To: Vaclav Petricek <vaclav.petricek@mff.cuni.cz> Cc: freebsd-mobile@freebsd.org Subject: Re: wi - filtering traffic between stations on the same AP Message-ID: <14425683.1053384159@[192.168.0.233]> In-Reply-To: <Pine.BSF.4.50.0305171405460.29459-100000@sec.ms.mff.cuni.cz> References: <Pine.BSF.4.50.0305171405460.29459-100000@sec.ms.mff.cuni.cz>
next in thread | previous in thread | raw e-mail | index | archive | help
Might wanna try IPFW2 MAC address filtering, might work. --On Saturday, May 17, 2003 2:40 PM +0200 Vaclav Petricek <vaclav.petricek@mff.cuni.cz> wrote: > > Hello > > I would like to be able to filter traffic between stations connected to > a single AP. The AP should be used just for Internet access and not for > communication between local stations. > > Reason: > 1. I do not want the stations to use the AP as a retranslation point where > they do not see each other directly > 2. I want to limit the traffic generated by windows broadcasts etc. > > I have seen in the wi driver that when the packet is destined for an > associated station, or it is a broad/multi/cast it gets retransmitted > immediatelly. > > My questions are: > > 1. Is there a way to force these packets to go through ipfw without > patching kernel? I have seen some sysctls that should control the ethernet > level filtering but I had no luck making it work on a single wi interface. > A pointer describing the data flow between interface kernel modules, > kernel and firewall modules would be great. > 2. In case I do have to make a patch to implement this filtering, what is > the best way to encapsulate it? Some flag to ifconfig that says drop > broadcasts and do not resend packets to associated stations? > > Thanks for any hints, > > -- > > Vaclav Petricek > > _______________________________________________ > freebsd-mobile@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-mobile > To unsubscribe, send any mail to "freebsd-mobile-unsubscribe@freebsd.org" > -- Matt Peterson another.geek.without.a.life matt@peterson.org http://matt.peterson.org/ -------------------------------------------------
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?14425683.1053384159>