can't block MAC Address using iptables
Why i can't block a user using MAC Address from get access to my server.The user can still access the website from my server This is my script in the iptables
///////////////////////////////////////////////////////// *filter :INPUT DROP [0:0] :FORWARD DROP [0:0] :OUTPUT ACCEPT [0:0] -A INPUT -m mac --mac-source <USER MAC ADDRESS> -j DROP COMMIT ///////////////////////////////////////////////////////// |
In the above "script", if you already have INPUT policy set to DROP (nothing that is explicitly allowed, is silently denied), the lower appended rule (mac address) won't of course work because it doesn't change anything. The curious thing is, if your INPUT is set to DROP for everything, how is it possible that somebody can connect to your server?
I think there's something else wrong too. Quote:
|
The situation is like this
if i have insert the user mac address(get mac info from user machine) to iptables in my server, it should block the user right..so the user should can 't access the webpages that host in my server.it is this right ?? or how to test the user is exactly block by the the server or not ?? this the full iptables script that i get form iptables //////////////////////////////////// *filter :INPUT DROP [0:0] :FORWARD DROP [0:0] :OUTPUT ACCEPT [0:0] -A INPUT -m mac --mac-source <USER MAC ADDRESS> -j DROP COMMIT /////////////////////////////////// hope u can help me to figure out the problems ?? |
All times are GMT -5. The time now is 11:38 PM. |