Hello, Daniel Givens a écrit :
i would like to do using FORWARD example iptables -A FORWARD -s -m ! 00:0F:EA:91:04:08 -d 0.0.0.0/0 -p tcp --dport 3128 -j DROP i want to set this rule to avoid the computer being cloned i think using mac & iptables i can solve this rigth ?What do you mean by "cloned". It is trivial to spoof a mac address.
Or an IP address on the same ethernet link. [...]
As for your syntax, that looks correct.
I think the -s option expects a source address or address range.