Brian J. Murrell wrote:
On Sun, 2008-07-13 at 21:20 -0700, Tom Eastep wrote:Use the rules fileYeah. The more I thought about it, the more I wondered what the use-case for the maclist file was given that the rules file could handle it -- or so it seemed at first glance.
MAC validation in the rules file is awkward to do in the general case without user-defined actions; those came along well after the maclist file was invented.
Of course, given the ease with which MAC addresses can be spoofed, one might wonder "Why do MAC validation at all?".
-Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- Sponsored by: SourceForge.net Community Choice Awards: VOTE NOW! Studies have shown that voting for your favorite open source project, along with a healthy diet, reduces your potential for chronic lameness and boredom. Vote Now at http://www.sourceforge.net/community/cca08
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
