Solved

Iptables & Squid Rules - Workstations with Dynamic Ip Address

Posted on 2006-10-30
2
372 Views
Last Modified: 2008-03-17
Hi Experts...

One of my networks has a Windows 2003 server thats acts as a DHCP to the local network, and i administer a Linux BOX (Debian) with iptables and Squid. The internet access is restricted based on individual policies acording with the CEO.

My questions:

In Iptables and in Squid is possible to apply rules using only the MAC ADDRESS or the Machine Name ?

Any help will be very apreciate...

Regard´s

Tullio

0
Comment
Question by:tullioc
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 4

Accepted Solution

by:
NorCal2612 earned 500 total points
ID: 17839686
This is a decent article explaining how to create iptables rules that filter based on MAC addresses:

http://jaredquinn.info/it-related/technical/2006.02.05/iptables-mac-filter/

And here is an example for squid:

(1) To allow http_access for only one machine with MAC Address 00:08:c7:9f:34:41

To use MAC address in ACL rules. Configure with option -enable-arp-acl.

acl all src 0.0.0.0/0.0.0.0
acl pl800_arp arp 00:08:c7:9f:34:41
http_access allow pl800_arp
http_access deny all

Hope this helps.
0
 

Author Comment

by:tullioc
ID: 17915681
NorCal2612

Perfect, thanks a lot....
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

BIND is the most widely used Name Server. A Name Server is the one that translates a site name to it's IP address. There is a new bug in BIND (https://kb.isc.org/article/AA-01272), affecting all versions of BIND 9 from BIND 9.1.0 (inclusive) thro…
Fine Tune your automatic Updates for Ubuntu / Debian
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

735 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question