From mboxrd@z Thu Jan 1 00:00:00 1970 From: "Paul Cousins" Subject: Re: [iptables] howto bind Mac to ip address Date: Mon, 11 Aug 2003 11:33:30 +0100 Sender: netfilter-admin@lists.netfilter.org Message-ID: <001101c35ff4$025cc900$0300a8c0@frodo> References: <007601c35fe1$01eb3d20$142a45ca@shahid> Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_000E_01C35FFC.63E73540" Return-path: Errors-To: netfilter-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Id: List-Unsubscribe: , List-Archive: To: netfilter@lists.netfilter.org This is a multi-part message in MIME format. ------=_NextPart_000_000E_01C35FFC.63E73540 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable .> I want to bind each MAC address to his or her assigned IP address so = nobody should mess around to change his or her IP's. look into dhcpd from the internet consortium www.isc.org/products/DHCP/ = 99.9% of all linux release's come with so its a case of RTM and go from = there but its very easy to configure espically with something like = webmin. 2.> I want to allow selective MAC addresses each time, so they are not = allowed to use it all the time or I can block them whenever I want to. iptables can filter by mac address and ip adress so deny all users but = those you wish to allow. A script with an allow variable in it would be = you best bet as you coud add and remove users very quickly form the = script then simply run and you new rules will be implemented = immediately. simple cron scripts with drop or deny rules set to run at times you wish = to deny access will restrict the users. there may be an easy way not = sure?.=20 hope this points you in the rigth direction. ------------------------------------------------ Paul Cousins Canterbury Computer Services paul@canterburycomputerservices.co.uk ----- Original Message -----=20 From: Tariq Anwer=20 To: netfilter@lists.netfilter.org=20 Sent: Monday, August 11, 2003 9:17 AM Subject: [iptables] howto bind Mac to ip address Hi! I'm a new to Linux, I want to setup Linux NAT box for a small LAN with = selective services to allow like only browsing for staff and other = services for management like ftp msn chatting etc. =20 1.> I want to bind each MAC address to his or her assigned IP address = so nobody should mess around to change his or her IP's. =20 2.> I want to allow selective MAC addresses each time, so they are not = allowed to use it all the time or I can block them whenever I want to. =20 I will highly appreciate if anybody could help me or direct me to any = web site or article to build this Box successfully. =20 Best regards, =20 Alien ------=_NextPart_000_000E_01C35FFC.63E73540 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
.>  I want to bind = each MAC=20 address to his or her assigned IP address so nobody should mess around = to change=20 his or her IP=92s.
 
look into = dhcpd from the=20 internet consortium www.isc.org/products/DHCP/= 99.9% of all linux release's come with so its a case of = RTM and=20 go from there but its very easy to configure espically with something = like=20 webmin.
 

2.> I want to = allow selective=20 MAC addresses each time, so they are not allowed to use it all the time = or I can=20 block them whenever I want to.

 

iptables can filter by mac address and ip adress so deny all = users but=20 those you wish to allow. A script with an allow variable in it would be = you best=20 bet as you coud add and remove users very quickly form the script then=20 simply run and you new rules will be implemented = immediately.

 

simple cron scripts with drop or deny rules set to run at times = you wish=20 to deny access will restrict the users. there may be an easy way not = sure?.=20

 

 

hope this points you in the rigth direction.

------------------------------------------------
Paul=20 Cousins
Canterbury Computer Services
paul@canterburycomp= uterservices.co.uk
 
 
----- Original Message -----
From:=20 Tariq = Anwer=20
To: netfilter@lists.netfilter.o= rg=20
Sent: Monday, August 11, 2003 = 9:17=20 AM
Subject: [iptables] howto bind = Mac to ip=20 address

Hi!
 

I=92m a new to = Linux, I want to=20 setup Linux NAT box for a small LAN with selective services to allow = like only=20 browsing for staff and other services for management like ftp msn = chatting=20 etc.

 

1.>  I want to bind each MAC = address to his=20 or her assigned IP address so nobody should mess around to change his = or her=20 IP=92s.

 

2.> I want to = allow=20 selective MAC addresses each time, so they are not allowed to use it = all the=20 time or I can block them whenever I want to.

 

I will highly = appreciate if=20 anybody could help me or direct me to any web site or article to build = this=20 Box successfully.

 

Best regards,

 

Alien

------=_NextPart_000_000E_01C35FFC.63E73540--