[TriLUG] fIREWALL QUESTION

Tanner Lovelace lovelace at wayfarer.org
Fri Jan 3 11:33:36 EST 2003


On Fri, 2003-01-03 at 11:30, Jim Ray wrote:
> Please correct me if I'm wrong; however, me thinks firewalls in general
> do not operate at the arp/mac level but rather ip and the next layer
> (tcp, udp).  All the arp/mac stuff takes place at a lower network layer
> and should not enter the firewall picture at all.
> 
> I've never seen any settings for arp/mac stuff in any firewall I've ever
> used.  Plenty of settings for ip and port stuff, though.

Actually, what I think he meant was, can a linux box ask for and
receive packets for a particular mac address (presumably not its
own) and then once it has them, subject them to its firewall setup.

Ryan, I've never done it myself, but you might try looking for
something called proxyarp.  I think that will do what you want.

Good luck,
Tanner
-- 
Tanner Lovelace | lovelace(at)wayfarer.org | http://wtl.wayfarer.org/
--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--
GPG Fingerprint = A66C 8660 924F 5F8C 71DA  BDD0 CE09 4F8E DE76 39D4
GPG Key can be found at http://wtl.wayfarer.org/lovelace.gpg.asc
--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--
 Those who are willing to sacrifice essential liberties for a little 
 order, will lose both and deserve neither.  --  Benjamin Franklin 

 History teaches that grave threats to liberty often come in times
 of urgency, when constitutional rights seem too extravagant to 
 endure.  --  Justice Thurgood Marshall, 1989 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://www.trilug.org/pipermail/trilug/attachments/20030103/8e307bb0/attachment.pgp>


More information about the TriLUG mailing list