Dear Sir/Madam,
I use mac address restriction to set accept policy, like the
following:
/sbin/iptables -A INPUT -p tcp -i eth0 -m mac --mac-source
00:01:23:26:B1:22 -j ACCEPT
/sbin/iptables -A INPUT -p tcp -i eth0 -j DROP
It will accept only mac address: 00:01:23:26:B1:22 incoming and it
really takes effects, but I have two problems.
First, the server is sometimes no responding or delay for few seconds
when I want to connect it or already connected. ( like telnet or DNS
query). Is it normal or I did wrong way?
Second, the mac address rule seems to take effect in the same netmask.
But I thought iptables should know the mac address outside LAN. How can I
do or write the rules so that I can use mac address to set policy to the
different netmask?
Best Regards
Yours sincerely,
Jos Feng.
Network Engineer/IT Center
Tel: 02-23581928 ext 212
E-mail: [EMAIL PROTECTED]
