Re: iptables by mac
Daniel Givens a écrit :
i would like to do using FORWARD
iptables -A FORWARD -s -m ! 00:0F:EA:91:04:08 -d 0.0.0.0/0 -p tcp --dport
3128 -j DROP
i want to set this rule to avoid the computer being cloned
i think using mac & iptables i can solve this rigth ?
What do you mean by "cloned". It is trivial to spoof a mac address.
Or an IP address on the same ethernet link.
As for your syntax, that looks correct.
I think the -s option expects a source address or address range.