LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 06-01-2006, 10:00 AM   #1
eggoz
Member
 
Registered: Feb 2003
Posts: 159

Rep: Reputation: 30
MAC Filtering


I am trying to add MAC Filtering in our network. From what I have read, this command will allow the MAC address to get through the firewall.

$IPTABLES -A INPUT -m mac --mac-source 08:00:46:99:CB:96 -j ACCEPT

First, is this all I need? Second, will I have any problems since I am also using NAT? Thanks for the help.
 
Old 06-02-2006, 06:09 AM   #2
timmeke
Senior Member
 
Registered: Nov 2005
Location: Belgium
Distribution: Red Hat, Fedora
Posts: 1,515

Rep: Reputation: 61
I think MAC addresses can be spoofed, so you should look at other security measures as well. And, in general, the more securiy, the better...

NAT, or Network Address Translation, does nothing more than translating IP addresses (ie hiding a computer's real IP address by replacing it with the NAT device's IP). Since IP addresses are located in a higher layer than the physical MAC addresses, NAT shouldn't interfere with MAC address filtering.
But try it and you will see...
 
Old 06-02-2006, 03:25 PM   #3
eggoz
Member
 
Registered: Feb 2003
Posts: 159

Original Poster
Rep: Reputation: 30
I'll be honest and have not read about MAC spoofing. For right now, I believe it will suit my needs. I have a small network with 13 people out here in Iraq. The problem is people are letting their friends hook up their computers to internet they did not pay for. I just need something that will keep them offline. This is the simplest way that I know. I am currently running FC 5 w/ 2 nics as a router. I have a firewall to protect us as well as bandwidthd to graph traffic. I am working on installing bandwidth quotas ( rate at which people can download). The only problem I am having is I am running Firestarter (my firewall) which does not include MAC filtering. Can I flush out my iptables rules ( I am currently not even using iptables) and enable it and use it to do my MAC filtering? If so, how will this need to be setup? Will this cause a problem with my firewall?
 
Old 06-06-2006, 03:20 AM   #4
timmeke
Senior Member
 
Registered: Nov 2005
Location: Belgium
Distribution: Red Hat, Fedora
Posts: 1,515

Rep: Reputation: 61
Check out a tool called arpwatch.

iptables, as the name suggests, is a firewall that works on TCP/IP packets. MAC (or physical) network addresses are at a lower layer, so they shouldn't affect iptables.

I'm not using Firestarter, so I can't help you with that.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
MAC address filtering in Slackware? houler Linux - Networking 9 05-12-2006 08:34 AM
mac address filtering gabsik Linux - Security 8 04-27-2006 09:23 AM
Questions on DHCP Filtering via MAC address brainee28 Linux - Networking 1 02-03-2005 03:11 PM
MAC address filtering firewall? gigaah Linux - Security 5 06-07-2004 12:05 PM
Sendmail Spam filtering and Virus filtering MrJoshua Linux - General 2 04-03-2003 11:12 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 06:19 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration