On Fri, Feb 16, 2001 at 05:40:04PM -0800, Jack Bowling wrote:
> I am trying to use the --mac-source option in the netfilter code to better
> refine access to my linux box. However, I have run up against something. The
> router through which my private subnet work box passes sends a 14-group
> "inv
>> >1) I know that some of the the MAC addresses given by tcpdump are
>> >invalid. Is this a bug? In what?
>>
>> Nope. The addresses (with mostly zeroes) are like IP addressses with many
>> zeroes or '255' - they handle concepts like "broadcast" or "me".
>
>Huh? It's a vanilla unicast IP datagram
[EMAIL PROTECTED] wrote:
> Jack Bowling wrote -
> >> iptables v1.1.1: Bad mac address `xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx'
> >>
> >> to the respective iptable line:
> >>
> >> $IPT -A INPUT -p tcp -s xxx.xxx.xxx.xxx -d $NET -m mac --mac-source
>xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx --
James L. wrote -
> Hello All,
>
> On Sat, 17 Feb 2001 [EMAIL PROTECTED] wrote:
> > Stefan Hanse writes -
> > >Umm.. An ethernet MAC address is 48bit long, ie AA:BB:CC:DD:EE:FF, 6
> >groups, not 14. Is this really an ethernet
> > >interface? (If it really has 14 groups).
> >
> >> Good question.
Hello All,
On Sat, 17 Feb 2001 [EMAIL PROTECTED] wrote:
> Stefan Hanse writes -
> >Umm.. An ethernet MAC address is 48bit long, ie AA:BB:CC:DD:EE:FF, 6
>groups, not 14. Is this really an ethernet
> >interface? (If it really has 14 groups).
>
>> Good question. I have determined by scanni
[EMAIL PROTECTED] wrote:
>All hits on my firewall from cable modem servers other than my own provider also have
>the 14 group "MAC" address so it l>ooks like this may be a feature of these units.
Some cable providers use Ethernet bridging instead of full ip routing. perhaps this
is what you a
Jack Bowling wrote -
>> I am trying to use the --mac-source option in the netfilter code to better refine
>access to my linux box. However, I > have run up against something. The router
>through which my private subnet work box passes sends a 14-group "invalid" > mac
>address, presumably as
Hi!
> I am trying to use the --mac-source option in the netfilter code to better refine
>access to my linux box. However, I > have run up against something. The router
>through which my private subnet work box passes sends a 14-group "invalid" > mac
>address, presumably as an attempt to conceal
Hello Jack & All , Might this be an atm interface ?
If it is not then am I to assume that an atm interface
with its erroneous mac-address is going to have the same
difficulties . That is of course as soon as the atm interface
actually put a valid ESI/mac-
9 matches
Mail list logo
