Re: users bypassing shaper limitation

To: debian-isp@lists.debian.org
Subject: Re: users bypassing shaper limitation
From: Gerard MacNeil <macneil@supercity.ns.ca>
Date: Mon, 2 Jul 2001 06:39:12 -0300
Message-id: <[🔎] 20010702063912.792977aa.macneil@supercity.ns.ca>
In-reply-to: <[🔎] NEBBJNLLGLPLEJAFGEPEAEFPCBAA.jsw@five-elements.com>
References: <[🔎] 20010701084616.1639278d.macneil@supercity.ns.ca> <[🔎] NEBBJNLLGLPLEJAFGEPEAEFPCBAA.jsw@five-elements.com>

On Sun, 1 Jul 2001 15:59:34 -0400, "Jeff S Wheeler" <jsw@five-elements.com> wrote:

> I have been reading this thread and noticed no one has suggested the MAC
> address filtering capabilities in Linux 2.4's new ip tables subsystem. 

There is no requirement to run 2.4.x and iptables, nor iproute2, to accomplish the policy implementation that was specified.  The administrative policy is bandwith control over a defined set of IP addresses.  That policy is being circumvented with the current configuration by the whizkids.  It is up to the tech to implement a solution.

Beside, I'm sure I have a MAC address changer utility (or is that a feature of iproute2) that I downloaded sometime in the past.  The same whizkids would use it and circumvent the policy based on MAC addresses with it ... although it would be a trickier thing to accomplish.  I think I have read on some mailing list that it is quite a security issue with PPPoE and some wireless connections.

Gerard MacNeil
System Administrator

Reply to:

Follow-Ups:
- RE: users bypassing shaper limitation
  - From: "Jeff S Wheeler" <jsw@five-elements.com>

References:
- Re: users bypassing shaper limitation
  - From: Gerard MacNeil <macneil@supercity.ns.ca>
- RE: users bypassing shaper limitation
  - From: "Jeff S Wheeler" <jsw@five-elements.com>

Prev by Date: Re: users bypassing shaper limitation
Next by Date: Qmail errors
Previous by thread: Re: users bypassing shaper limitation
Next by thread: RE: users bypassing shaper limitation
Index(es):
- Date
- Thread