LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 03-15-2007, 04:49 PM   #1
dellthinker
Member
 
Registered: Jan 2007
Distribution: Debian
Posts: 223

Rep: Reputation: 30
Debian MAC Filtering


Hi all. Does anyone know how i would go about filtering MAC addys with debian? Maybe a firewall or something? Im using a firewall on the machine but i dont think it offered mac filtering. I read this post here but i looks like that person was using iptables. But it seems like he's talking about filtering out every service on the machine, im just trying to filter mac addresses of certain services, sort of like hosts.allow type. Any suggestions?
 
Old 03-16-2007, 05:10 AM   #2
win32sux
LQ Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 380Reputation: 380Reputation: 380Reputation: 380
Quote:
Originally Posted by dellthinker
Hi all. Does anyone know how i would go about filtering MAC addys with debian? Maybe a firewall or something? Im using a firewall on the machine but i dont think it offered mac filtering. I read this post here but i looks like that person was using iptables. But it seems like he's talking about filtering out every service on the machine, im just trying to filter mac addresses of certain services, sort of like hosts.allow type. Any suggestions?
what firewall are you using?? it would be really strange (but not impossible) if it isn't some type of front-end to iptables... using mac address filtering in iptables to block access to only certain services is basically just a matter of adding a couple matches to a typical iptables rule...

instead of filtering all packets from the MAC, like:
Code:
iptables -I INPUT -m mac ---mac-source xx:xx:xx:xx:xx:xx -j DROP
you'd specify what you don't want them to use (for example HTTP):
Code:
iptables -I INPUT -p TCP --dport 80 \
-m mac ---mac-source xx:xx:xx:xx:xx:xx -j DROP
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
MAC-Level Filtering Siva4Linux Linux - Wireless Networking 5 10-17-2006 03:52 AM
MAC Filtering eggoz Linux - Networking 1 06-11-2006 02:11 PM
MAC Filtering eggoz Linux - Networking 3 06-06-2006 03:20 AM
MAC address filtering in Slackware? houler Linux - Networking 9 05-12-2006 08:34 AM
mac address filtering gabsik Linux - Security 8 04-27-2006 09:23 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 12:40 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration