From owner-freebsd-ipfw@FreeBSD.ORG Mon Feb 14 20:32:56 2005 Return-Path: Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 72FC016A4CE for ; Mon, 14 Feb 2005 20:32:56 +0000 (GMT) Received: from smtp208.mail.sc5.yahoo.com (smtp208.mail.sc5.yahoo.com [216.136.130.116]) by mx1.FreeBSD.org (Postfix) with SMTP id 3F47543D1D for ; Mon, 14 Feb 2005 20:32:56 +0000 (GMT) (envelope-from vitadiazlistas@yahoo.com.ar) Received: from unknown (HELO isca1) (vitadiazlistas@201.252.136.62 with login) by smtp208.mail.sc5.yahoo.com with SMTP; 14 Feb 2005 20:32:55 -0000 Message-ID: <022f01c512b3$102c45b0$0a0a1e0a@isca1> From: "vitadiazlistas" To: Date: Mon, 14 Feb 2005 17:34:30 +0100 MIME-Version: 1.0 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1437 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1441 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.1 Subject: To control accessos by MAC address of ethernets X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 14 Feb 2005 20:32:56 -0000 >From already thank you very much reading to me. This compiled ipfw2 and works everything except this I have ipfw2 very well walking but I need to validate the accesses of = the LAN by interval of the MAC of ethernets and I have not been able to = make walk this. Somebody can show to me like is that ipfw2 with the subject of the MAC = works Thanks=20 Can that the this not putting rules in the place which they go? that is = in the part of firewall where they funcionarian as filter. The same it happens to me with IPA adds paketes but it does not let to = me walk but the control of bandwith. Also it is rare. Says to me that there is to patch freebsd because in some cases it does = not walk that type of control. I do not want to use DHCP to validate I must make a control of accesses = by wireless and LAN via ipfw2, if it will be by better Web but I am = trying to do it i myself. My firewall ## rl0 NAT (LAN 1) ## ep1 conecction internet ipfw -f flush ipfw add divert natd all from any to any via ep1 ipfw add allow all from any to 192.168.1.56 MAC any 00:0d:88:ba:b9:40 = via rl0 (no add paketes) ipfw add fwd 127.0.0.1,3128 tcp from 192.168.0.0/16 to not = 192.168.0.0/16 80 ipfw add pipe 78 tcp from any 80 to 192.168.0.0/16 ipfw pipe 78 config mask src-ip 0x000000ff bw 80Kbit/s