On Sun, Aug 24, 2003 at 10:53:28PM -0500, Jason Bradley Nance wrote: > is there a way to block all MACs on the private side of the network > except for a list of specifically allowed ones? basically, i want to > limit internet access for those who aren't specifically allowed.
Nothing in the script at this point. It basically assumes that anything in the proper internal network should be allowed out. One way of effect the same result, but within the current script would be to have two internal networks routed through the gateway. A trusted network and a non-trusted network. Anyone on the trusted would have access to the internet, but those on the untrusted would not. A forwarding could be configured to allow traffic between the two. Don't know if that helps at all. -- Jamin W. Collins Remember, root always has a loaded gun. Don't run around with it unless you absolutely need it. -- Vineet Kumar