[ previous ] [ next ] [ threads ]
 
 From:  GD Incorporation <rbasuki at gdincorporation dot com>
 To:  "'YvesDM'" <ydmlog at gmail dot com>
 Cc:  "'m0n0wall'" <m0n0wall at lists dot m0n0 dot ch>
 Subject:  RE: [m0n0wall] Firewall Rules by MAC Address. IS it possible?
 Date:  Thu, 30 Sep 2010 16:37:51 +0700 
Oh....

Thanks... That is a good input. Maybe the m0n0wall masters would be so kind
to give me some tips on how to do what Yves said?

Thanks
Rendra

-----Original Message-----
From: YvesDM [mailto:ydmlog at gmail dot com] 
Sent: Thursday, September 30, 2010 4:29 PM
To: rbasuki at gdincorporation dot com
Cc: m0n0wall
Subject: Re: [m0n0wall] Firewall Rules by MAC Address. IS it possible?

I meant, on a linux firewall (m0n0wall is Freebsd driven) you can add a
firewall rule to filter on mac address.
On m0n0wall this isn't implemeted in the gui, but I think you can do it
directly in the config file, but you will have to search on how to filter on
mac address with ipfw (firewall uses by Freebsd/m0n0wall)

kind regards
Yves

On Thu, Sep 30, 2010 at 11:13 AM, GD Incorporation
<rbasuki at gdincorporation dot com> wrote:
> All I am saying is
>
> How many people... I mean, just regular pc users would know how to 
> execute such command? Plus, no one in other than computer department 
> in any company would want to use linux? Mostly just windows or mac. 
> Changing MAC address on mac or windows is not that easy. But changing 
> IP in Windows is just too easy.
>
> Most of my users are windows users.
>
> So that is why, for me, having mac filter in firewall rule would help 
> so much.
>
> Rendra
>
> -----Original Message-----
> From: YvesDM [mailto:ydmlog at gmail dot com]
> Sent: Thursday, September 30, 2010 3:53 PM
> To: rbasuki at gdincorporation dot com
> Cc: m0n0wall
> Subject: Re: [m0n0wall] Firewall Rules by MAC Address. IS it possible?
>
> On Thu, Sep 30, 2010 at 10:47 AM, GD Incorporation 
> <rbasuki at gdincorporation dot com> wrote:
>> True
>>
>> But MAC address is a lot more difficult to change than IP for most
people.
>> Only a few computer people knows that.
>>
>> Rendra
>>
>
>
> On linux, with iptables you have the option --mac-source.
> Don't know if there exists something similar in ipfw.
>
> kind regards
> Yves
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>
>
>

---------------------------------------------------------------------
To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch