deny « The Linux Blog

1Apr/090

IPTables: Filtering by MAC Address

If we want filter a MAC in our firewall, we can use IPTables to this. For example, if we want to filter a MAC like 00:12:8D:EE:6E:AB (Must type the MAC with this format -> HH:HH:HH:HH:HH:HH) and deny their access to our Firewall we can put type this:

iptables -A INPUT -m -mac --mac-source 00:12:8D:EE:6E:AB -j DROP

Also, we can use the ! operator, wich inverts the operation, for example, if we type:

iptables -A INPUT -m -mac --mac-source ! 00:12:8D:EE:6E:AB -j DROP

All the packets will be dropped, except the packets from 00:12:8D:EE:6E:AB MAC.

Tagged as: deny, drop, filter, mac No Comments

The Linux Blog UNIX, LINUX, BSD, OSX

IPTables: Filtering by MAC Address

Recent Posts

Recent comments

Archives

Tag cloud

Blogroll