YEAP, You sign mac on brigde filter and associate it in pf.conf
example: on bridge: pass in on rl0 src aa:bb:cc:dd:ee tag server on pf.conf pass in log on rl0 inet proto tcp from 10.20.30.40 tagged server Regards, 2011/3/25 Alessandro Baggi <alessandro.ba...@gmail.com> > Il 25/03/2011 14:28, R0me0 *** ha scritto: > >> here: http://www.openbsd.org/faq/pf/tagging.html >> >> Is a good point to start your journey >> >> Regards, >> >> >> 2011/3/25 Alessandro Baggi <alessandro.ba...@gmail.com <mailto: >> alessandro.ba...@gmail.com>> >> >> >> Hi list. I'm looking for a software that performs controls based >> on MAC ACL for access to the network and that possible detects ARP >> poisoning and block it with pf. >> There is this software for OpenBSD? >> >> Thanks in advance. >> >> >> thanks, if there are not misunderstanding it is only for filter MAC > address and this is for bridge. It's possible make association between IP > and MAC?
