[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [users] MAC -> IP?

If you really catch traffic destinated to other hosts, then other people connected will have the same problem ie :
   - some people will be able to *sniff* your traffic :-(
   - your bandwith will depends on other people.
   - You'll be able to spoof packets on the Internet


IMHO, your cable company has a badly designed network. I have a cable
modem as well, and it filters out all of the traffic which is not sent
to my IP address.

That is true. However, it seems like a good idea to filter that way. Will
this do the job?
iptables -P INPUT DROP
iptables -A INPUT -i eth0 -d ! -j DROP

as the first rule of the input chain (and after that a dozen other rules)?

I am no hero when it comes to iptables (still a bit newbie) and it is a
bad thing when you think a firewall works when it does not.


-- To UNSUBSCRIBE, email to debian-firewall-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to: