Date: Mon, 24 Sep 2007 23:55:36 +0200 From: Mel <fbsd.questions@rachie.is-a-geek.net> To: freebsd-questions@freebsd.org Subject: Re: Silly IPFW question. Message-ID: <200709242355.37331.fbsd.questions@rachie.is-a-geek.net> In-Reply-To: <BE04780C-507E-4F98-8F20-EFEEEEA6C8CE@mac.com> References: <020301c7fef2$7e8a1db0$6501a8c0@GRANT> <BE04780C-507E-4F98-8F20-EFEEEEA6C8CE@mac.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Monday 24 September 2007 23:44:07 Chuck Swiger wrote: > On Sep 24, 2007, at 2:33 PM, Grant Peel wrote: > > Is there anyway to make a rule in IPFW that will match MAC > > addresses instead of IP or port numnbers (and no, I didnt see > > anything in the docs :-)) > > Search "man ipfw" for MAC. Something like this will: > > ipfw add 10 deny MAC any 10:20:30:40:50:60 > > ...block any traffic from that ethernet address. Be aware of the > net.link.ether.ipfw sysctl needed and advice in the section "PACKET > FLOW". Ok, been too long since I played with IPFW obviously. -- Mel
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200709242355.37331.fbsd.questions>