Date: Sat, 21 Apr 2007 17:35:10 +0300 From: Fratiman Vladut <vladone@spaingsm.com> To: ipfw@freebsd.org Subject: Re: ipfw with nat - allowing by MAC address Message-ID: <1029169348.20070421173510@spaingsm.com> In-Reply-To: <937e203f0704201153u7d5c05qb2b0183ca839acf7@mail.gmail.com> References: <937e203f0704191400i10ae5751ka41c17e40e4eff99@mail.gmail.com> <937e203f0704201150n2f7d1cd6t65de8844581562c7@mail.gmail.com> <937e203f0704201153u7d5c05qb2b0183ca839acf7@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
You need to enable layer 2 filtering if u want to block mac address, but is not very useful because can be easy spoofed. sysctl net.link.ether.ipfw=1 To make this change permanently edit /etc/sysctl.conf For more information about bridge read this: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/network-bridging.html -- Best regards, Fratiman mailto:vladone@spaingsm.com
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1029169348.20070421173510>