Date: Mon, 24 Sep 2007 14:44:07 -0700 From: Chuck Swiger <cswiger@mac.com> To: Grant Peel <gpeel@thenetnow.com> Cc: freebsd-questions@freebsd.org Subject: Re: Silly IPFW question. Message-ID: <BE04780C-507E-4F98-8F20-EFEEEEA6C8CE@mac.com> In-Reply-To: <020301c7fef2$7e8a1db0$6501a8c0@GRANT> References: <020301c7fef2$7e8a1db0$6501a8c0@GRANT>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sep 24, 2007, at 2:33 PM, Grant Peel wrote: > Is there anyway to make a rule in IPFW that will match MAC > addresses instead of IP or port numnbers (and no, I didnt see > anything in the docs :-)) Search "man ipfw" for MAC. Something like this will: ipfw add 10 deny MAC any 10:20:30:40:50:60 ...block any traffic from that ethernet address. Be aware of the net.link.ether.ipfw sysctl needed and advice in the section "PACKET FLOW". -- -Chuck
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?BE04780C-507E-4F98-8F20-EFEEEEA6C8CE>