Re: [users] MAC -> IP?

To: Sebastiaan <S.Breedveld@ITS.TUDelft.NL>
Cc: debian-firewall@lists.debian.org
Subject: Re: [users] MAC -> IP?
From: deb sec <deb@altern.org>
Date: Thu, 21 Jun 2001 11:40:07 +0200
Message-id: <3B31C0F7.5020108@altern.org>
References: <Pine.HPP.3.95.1010621080929.7083A-100000@elektron.its.tudelft.nl>

If you really catch traffic destinated to other hosts, then other peopleconnected will have the same problem ie :

   - some people will be able to *sniff* your traffic :-(
   - your bandwith will depends on other people.
   - You'll be able to spoof packets on the Internet

god!

IMHO, your cable company has a badly designed network. I have a cable
modem as well, and it filters out all of the traffic which is not sent
to my IP address.

That is true. However, it seems like a good idea to filter that way. Will
this do the job?
iptables -P INPUT DROP
iptables -A INPUT -i eth0 -d ! 212.127.242.126 -j DROP

as the first rule of the input chain (and after that a dozen other rules)?

I am no hero when it comes to iptables (still a bit newbie) and it is a
bad thing when you think a firewall works when it does not.

Thanks,
Sebastiaan

--To UNSUBSCRIBE, email to debian-firewall-request@lists.debian.org

with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

References:
- Re: [users] MAC -> IP?
  - From: Sebastiaan <S.Breedveld@ITS.TUDelft.NL>

Prev by Date: Re: [users] MAC -> IP?
Next by Date: What Next.
Previous by thread: Re: [users] MAC -> IP?
Next by thread: Re: [users] MAC -> IP?
Index(es):
- Date
- Thread