Solved

How to involve MAC Address in IPtables Rule

Posted on 2004-09-08
2
372 Views
Last Modified: 2012-05-05
How can i add the mac address restriction to this rule ?


-A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 22 -s 200.75.XXX.XXX --syn -j ACCEPT


Thanks to you all !
0
Comment
Question by:diordonez
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 5

Expert Comment

by:NashvilleGuitarPicker
ID: 12016931
The following thread has a discussion similar to what you are trying to do:

http://lwn.net/2001/1011/a/netfilter-mac.php3

- Will
0
 

Accepted Solution

by:
danieldg earned 125 total points
ID: 14150601
-A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 22 -s 200.75.XXX.XXX -m mac --mac-source 01:02:03:04:05:06 --syn -j ACCEPT

Note this won't protect you from someone on the same switch/hub, mac addresses are not hard to forge.

Source:
http://iptables-tutorial.frozentux.net/iptables-tutorial.html#MACMATCH
0

Featured Post

MIM Survival Guide for Service Desk Managers

Major incidents can send mastered service desk processes into disorder. Systems and tools produce the data needed to resolve these incidents, but your challenge is getting that information to the right people fast. Check out the Survival Guide and begin bringing order to chaos.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question