On Sat, Feb 20, 2010 at 01:19:14PM +0100, Jean-Francois wrote: > Le Samedi 20 Fivrier 2010 12:21:14, Bret S. Lambert a icrit : > > On Sat, Feb 20, 2010 at 11:49:54AM +0100, Jean-Francois wrote: > > > Good morning, > > > > > > Is it possible to do filtering through pf or blocking traffic based of > > > MAC adress recognition ? > > > > > > We want to identify the machines on the internal network based on their > > > MAC adress and filter. > > > > > > Can tools like pf fo this (not in my actual searches) ? another way ? > > > > Although pf cannot filter on mac addresses, you can set up a > > bridge interface to add tags to packets, which pf can then > > act upon. > > > > > Regards > > Hello Bret, > > Can you please briefly explain the principle. I can see ifconfig(8) mentions > also that however it is still not clear.
the brconfig man page has examples of this > > I need to make a subnet with a local dhcp server and to filter on this side. I > believe I will do some NAT. > > Regards.
