On Sat, 19 Feb 2005, Appended wrote:
> iptables -A FORWARD -i eth1 -s 80.97.15.130 -m mac --mac-source
> 00-01-29-87-1D-28 -j ACCEPT
Fa asta in mangle/prerouting.
Sau, mai elegant si mult mai putin solicitant dpdv. al
consumului de timpi de cpu al masinii tale, fa o tabela arp statica
pentru fiecare ip alocat, iar pentru cele nealocate da un mac aiurea pe
care sa-l blochezi in firewall. Hints: man arp, vezi arp -s, vezi
formatul fisierului ethers.
--
Any views or opinions presented within this e-mail are solely those of
the author and do not necessarily represent those of any company, unless
otherwise expressly stated.
---
Detalii despre listele noastre de mail: http://www.lug.ro/
