iptables/mac address filtering question

To:	netfilter@lists.netfilter.org
Subject:	iptables/mac address filtering question
From:	"Jay Sprenkle" <jsprenkle@gmail.com>
Date:	Sat, 11 Aug 2007 12:46:51 -0500
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	netfilter-list1@securepoint.com
Dkim-signature:	a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=XrfEiynfGrrO4HJLPSh6pIgsamd9Pr1PfA8VsTTnMdKs/RgLxbE9IRmb88p4900bgemJHMdEye64uRJq0Zjs0iXrtE9/zhIr7ETwPQP0AFc0OcvZC+f+1VvIZ+8M7px7zpRZzTvHW7BzwTMrI5/w8q9MzzLSG2rCRR+5XowIkNk=
Domainkey-signature:	a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=hiEgbYR+HVF4OVAeV+h90wzjrVGjLJLYMYCRwvzeRGa3zt+Z61C5qW8yrRkitNpR88TaAP3HoQX06qK8mNzV8+2zou8NsovrLwGKYwrEQk2yWQJ8g5JxnXx/JFqouPXAOpdSs6IRtAoO0zEaKuI63hfn7w1VQqhF2dUQlr5kvug=
List-archive:	</pipermail/netfilter>
List-help:	<mailto:netfilter-request@lists.netfilter.org?subject=help>
List-id:	General discussion and user questions <netfilter.lists.netfilter.org>
List-post:	<mailto:netfilter@lists.netfilter.org>
List-subscribe:	<https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=subscribe>
List-unsubscribe:	<https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe>
Sender:	netfilter-bounces@lists.netfilter.org

Good morning all,

I'm already aware mac address is easily spoofed but I'd like to make
it just a little bit harder to break into my system anyway. I'm trying
to only allow a specific box to use scp to safely transfer data over
the internet.

I've put in a rule in my iptables chain but notice when I try to
connect it's rejected. The mac address I'm getting is not the same as
what iwconfig reports on my device. If a packet is passed through
routers on it's way to my box do they change the mac address of the
packet?

Any suggestions would be welcome.

Have a good weekend

<Prev in Thread]	Current Thread	[Next in Thread>
iptables/mac address filtering question, Jay Sprenkle <= Re: iptables/mac address filtering question (nfcan: to exclusive), Jim Laurino Re: iptables/mac address filtering question, Канивец Николай

Previous by Date:	Kernel-2-6 and iptables issue, Hrad Miroslav
Next by Date:	pptp-conntrack question, Канивец Николай
Previous by Thread:	Kernel-2-6 and iptables issue, Hrad Miroslav
Next by Thread:	Re: iptables/mac address filtering question (nfcan: to exclusive), Jim Laurino
Indexes:	[Date] [Thread] [Top] [All Lists]