Visit Jeremy's Blog.
Go Back > Forums > Linux Forums > Linux - Networking
User Name
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.


  Search this Thread
Old 06-02-2005, 10:37 AM   #1
Registered: Apr 2005
Distribution: Ubuntu, RHEL, Darwin
Posts: 73

Rep: Reputation: 15
Can I deny access based on mac or IP address with shorewall?

I've got a rather successful wireless router set up on my gentoo box, but something troubles me. Right now, I've got a pcmcia adapter card in it, and a pcmcia wifi card providing wifi access in ad-hoc mode...

This is, of course, inherently insecure, so how could I set up shorewall to deny access to all mac or IP addresses other than the ones I specify?

I've got a manual ip addressing scheme, so that won't be a problem...

for instance, the router is on,

Joe with a mac address of 123 can only connect to the router using IP
Bob with a mac address of 234 can only connect to the router using IP
Me, with a mac address of 345 can only connect to the router using IP
Fred, my next door neighbor has an unknown mac addreses and can't connect to my PC and packets are dropped before routing to the internet. That way he can't even ssh into my machine

Is that setup possible with shorewall?

Last edited by enigma_0Z; 06-02-2005 at 10:39 AM.
Old 06-02-2005, 04:15 PM   #2
Registered: Apr 2005
Location: Sweden
Distribution: Debian
Posts: 142

Rep: Reputation: 15
Yes it is. Read the manuals. They have a cenario like this described in there, I belive.


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
restrict server access by mac address? stinkpot Linux - Software 4 11-22-2005 07:05 AM
MAC Address based hostname hogg85 Linux - Networking 2 06-13-2005 12:51 PM
restricting service based on mac address sixth_sense Linux - Networking 3 09-28-2004 08:59 PM
Get IP based on Mac address sunmiewon Linux - Networking 4 01-31-2004 06:18 PM
Deny access by IP address plisken Linux - Security 1 12-29-2001 10:11 PM > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 09:44 AM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration