Man page - firehol-mac(5)
Packages contains this manual
- firehol-synproxy4(5)
- firehol-iptrap4(5)
- firehol-ipuntrap6(5)
- firehol-srctype(5)
- firehol-src(5)
- firehol-dst6(5)
- firehol-client4(5)
- firehol-iptables(5)
- firehol-dsttype(5)
- firehol-drop(5)
- firehol-modifiers(5)
- firehol-outface(5)
- firehol.conf(5)
- firehol-tarpit(5)
- firehol-protection(5)
- firehol-policy(5)
- firehol-router6(5)
- firehol-defaults-conf(5)
- firehol-actions(5)
- firehol-src4(5)
- firehol-connmark6(5)
- firehol-defaults.conf(5)
- firehol-deny(5)
- firehol-mark4(5)
- firehol-mark6(5)
- firehol-transparent_squid(5)
- firehol-client6(5)
- firehol-conf(5)
- firehol-group(5)
- firehol-ipv6(5)
- firehol-ipset(5)
- firehol-uid(5)
- firehol-ipuntrap4(5)
- firehol-accept(5)
- firehol-router(5)
- firehol-route6(5)
- firehol-cthelper(5)
- firehol-tos(5)
- firehol-variables(5)
- firehol-src6(5)
- firehol-mark46(5)
- firehol-proxy(5)
- firehol-router4(5)
- firehol-version(5)
- firehol-services(5)
- firehol-action6(5)
- firehol-cthelper46(5)
- firehol-interface46(5)
- firehol-blacklist(5)
- firehol-route46(5)
- firehol-nat(5)
- firehol-dport(5)
- firehol-ip6tables(5)
- firehol-interface6(5)
- firehol-dst(5)
- firehol-connmark(5)
- firehol-router46(5)
- firehol-both(5)
- firehol-action(5)
- firehol-tos-param(5)
- firehol-physin(5)
- firehol-action46(5)
- firehol-connmark46(5)
- firehol-cthelper6(5)
- firehol-redirect(5)
- firehol-return(5)
- firehol-connmark4(5)
- firehol-action4(5)
- firehol-reject(5)
- firehol-dscp-param(5)
- firehol-mark-param(5)
- firehol-server46(5)
- firehol-physout(5)
- firehol-mac(5)
- firehol-server6(5)
- firehol-tosfix(5)
- firehol-server4(5)
- firehol-custom(5)
- firehol-mark(5)
- firehol-dscp(5)
- firehol-masquerade(5)
- firehol-interface4(5)
- firehol-iptrap6(5)
- firehol-server(5)
- firehol-proto(5)
- firehol-synproxy6(5)
- firehol-snat(5)
- firehol-classify(5)
- firehol-ipv4(5)
- firehol-tcpmss(5)
- firehol-interface(5)
- firehol-loglimit(5)
- firehol-client(5)
- firehol-log(5)
- firehol-gid(5)
- firehol-params(5)
- firehol-iptrap(5)
- firehol-transparent_proxy(5)
- firehol-dnat(5)
- firehol-ipuntrap(5)
- firehol-route4(5)
- firehol-inface(5)
- firehol-sport(5)
- firehol-dst4(5)
- firehol-mac-param(5)
- firehol-client46(5)
- firehol-synproxy(5)
- firehol-cthelper4(5)
apt-get install firehol-doc
Manual
firehol-mac
NAMESYNOPSIS
DESCRIPTION
EXAMPLES
SEE ALSO
AUTHORS
NAME
firehol-mac - ensure source IP and source MAC address match
SYNOPSIS
mac IP macaddr
DESCRIPTION
Any mac commands will affect all traffic destined for the firewall host, or to be forwarded by the host. They must be declared before the first router or interface.
Note
There is also a mac parameter which allows matching MAC addresses within individual rules (see firehol-params(5)).
The mac helper command DROPs traffic from the IP address that was not sent using the macaddr specified.
When packets are dropped, a log is produced with the label “MAC MISSMATCH” (sic.). mac obeys the default log limits (see [LOGGING][] in firehol-params(5)).
Note
This command restricts an IP to a particular MAC address. The same MAC address is permitted send traffic with a different IP.
EXAMPLES
mac 192.0.2.1
00:01:01:00:00:e6
mac 198.51.100.1 00:01:01:02:aa:e8
SEE ALSO
|
• |
firehol(1) - FireHOL program |
|||
|
• |
firehol.conf(5) - FireHOL configuration |
|||
|
• |
firehol-params(5) - optional rule parameters |
|||
|
• |
||||
|
• |
||||
|
• |
AUTHORS
FireHOL Team.