MAC SOURCE

azeem ahmad azeem81 at msn.com
Mon Jul 11 16:58:15 CEST 2005


hi list
here is a script that i want to use to block unauthorized MACs on my 
network. but the problem is that  its not blocking all other MACs that r not 
specified in the script. plz help me out n telll wots the reaon of this
########################################################
iptables -A INPUT -m mac --mac-source $MAC -j ACCEPT
iptables -A FORWARD -m mac --mac-source $MAC -j ACCEPT
iptables -A INPUT -m mac --mac-source ! 11:22:33:44:55:66 -j DROP
iptables -A FORWARD -m mac --mac-source ! 11:22:33:44:55:66 -j DROP
iptables -t nat -A POSTROUTING -i eth1 -j MASQUERADE
###################################################
even now it is MASQUERADING all the macs that r not specified in the script.
waiting for ur response
Regards
Azeem

_________________________________________________________________
FREE pop-up blocking with the new MSN Toolbar - get it now! 
http://toolbar.msn.click-url.com/go/onm00200415ave/direct/01/




More information about the netfilter mailing list