[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: PF MAC Filter





Laurent Cheylus wrote:
Shawn Mitchell <shawnm@iodamedia.net> wrote :


Is it possable to specify a MAC Address filter?


Yes, with transparent firewalling (bridge mode) : see FAQ 6.10
http://www.openbsd.org/faq/faq6.html#Bridge

Do you block some nasty attacks with ARP : ARP spoofing with tools like Hunt or
Arp-sk ?

Be carefull with bridge mode : a good configuration is difficult and may be a
source of problems.

Foxy.


Do you (or anyone else) mind commenting on what those problems might be? I'm running a bridging firewall here at home and am curious what to look/watch for.


TIA,

Darren Spruell