arp <ip-you-want-to-block> iptables -A INPUT -m mac --mac-source 00:00:00:00:00:01 -j DROP <---(MAC you want to block) <snip> Juanca Sys Admin. [np] Thanks for the response but as I mentioned in my post I am aware that iptables has this functionality. My question was relating to ipchains. I'm pretty sure it doesn't as I don't seem to be able to find any reference to it in R.L.Zieglers 'Linux Firewalls' but thought I would just check with the group to make sure.
You can't filter packets based on MAC addresses with ipchains! Tamas