Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 5 Jul 2005 14:50:04 +0300
From:      vladone <vladone@llwb135.servidoresdns.net>
To:        freebsd-ipfw@freebsd.org
Subject:   rules to permit only few MAC address
Message-ID:  <1904693964.20050705145004@llwb135.servidoresdns.net>

Next in thread | Raw E-Mail | Index | Archive | Help
I want to permit only few MAC address to pass on my gateway.
I put in my script this line:
ipfw -q -f flush
cmd="/sbin/ipfw -q"
oif="rl0"
pif="fxp1"

$cmd add 110 skipto 5000 MAC any 00:0e:a6:81:40:3e in via $pif
$cmd add 120 skipto 5000 MAC any 00:50:8b:6b:0c:b2 in via $pif
..............................................................
$cmd add 500 deny log MAC any any in via $pif

$cmd add 5000 divert natd all from any to any via $oif

but not work (block legitimate traffic). How i can do this job?





Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?1904693964.20050705145004>