Re: [Security Firewall] MAC address support

Tue, 29 Jun 2004 16:02:05 -0700 




From: Florin <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: Re: [Security Firewall] MAC address support
Date: 29 Jun 2004 21:26:49 +0200

"Jose Alberto Panting" <[EMAIL PROTECTED]> writes:

> Florin....... I know you are very busy...

hum ... you thing so ? ;o)

> I am having a problem with some users that rob IP address to gain
> privileges, for the special situation of be public WorkStations, I can not
> use the user authentication of the proxi service.
>
> As you mentioned before, on MNF2 you will add the capability of handle
> ACL's, please include the ARP element support. and at the shorewall too,
> to create rulers using MAC address as IP Address from the WEB Interface.
>
> And please, expand the squid support of ACL's to "dely pools"
>
> Sorry if this requests are out of place...... Thanks..

shorewall already supports IP and MAC addresses blacklist and I have added
this support in shorewall.


On MNF or MNF2???

I am using MNF as a production one and I do not find the MAC capability on shorewall. I will install MNF2 on a test box to check for it....


Do you really need that kind of support through pools with squid and acls
? Isn't the mac address blacklist enough for what you're trying to do
already ?

Blacklist as I understand, deny all conection to that hosts, but in my case I need some acces for this host as smtp, http with restriccions of content, etc. but with the certain that they can not be hacked and the MAC address is the only secure way to limit this hosts, with no matter the IP address the user set it up (another way is fire this guys)


my 3cts,
--
Florin                          http://www.mandrakesoft.com
                                http://people.mandrakesoft.com/~florin/

____________________________________________________
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
____________________________________________________

_________________________________________________________________
Charla con tus amigos en l�nea mediante MSN Messenger: http://messenger.latam.msn.com/


____________________________________________________
Want to buy your Pack or Services from MandrakeSoft? 
Go to http://www.mandrakestore.com
Join the Club : http://www.mandrakeclub.com
____________________________________________________

Reply via email to