thr3ads.net - Shorewall users - [Shorewall-users] mac too long (from ADSL dev.)

If this information is useful, please help other people find it:
Share via:

Christian Spener

2003-Feb-06 04:53 UTC

[Shorewall-users] mac too long (from ADSL dev.) - got help?

i want to allow a the adsl modem to connect on my pc over inet on port 
5000.
it works without the mac-address.
when i put in the 14bytes mac address i get mac too long from iptables 
in shorewall.

the mac of the adsl modem on the inet is
00:04:4c:dc:e2:28:00:b0:8e:cf:3c:4c:08:00

i try to:
ACCEPT:info     net:~00-04-4c-dc-e2-28  $FW     tcp     5000    -

cause
http://www.cs.helsinki.fi/linux/linux-kernel/2001-07/0095.html
says that the first 6bytes r the mac source.

i still get

Shorewall:all2all:REJECT:IN=eth0 OUT= 
MAC=00:04:4c:dc:e2:28:00:b0:8e:cf:3c:4c:08:00 SRC=82.12.0.100 
DST=212.17.107.89 LEN=60 TOS=0x00 PREC=0x00 TTL=55 ID=30387 DF 
PROTO=TCP SPT=59339 DPT=5000 WINDOW=5840 RES=0x00 SYN URGP=0

someone got help?

thx
chris

Julian Church

2003-Feb-06 05:28 UTC

head link

[Shorewall-users] mac too long (from ADSL dev.) - got help?

At 16:55 06/02/03 +0100, Christian Spener wrote:
>the mac of the adsl modem on the inet is
>00:04:4c:dc:e2:28:00:b0:8e:cf:3c:4c:08:00
There''s more than one MAC there

00:04:4c:dc:e2:28 is the MAC of the destination interface
00:b0:8e:cf:3c:4c is the MAC of the source interface
08:00 indicates the type of packet received (IPv4 packet)

cheers

Julian
-- 

jc@ljchurch.co.uk
www.ljchurch.co.uk

Shorewall users - Feb 2003 - mac too long (from ADSL dev.) - got help?

[Shorewall-users] mac too long (from ADSL dev.) - got help?

[Shorewall-users] mac too long (from ADSL dev.) - got help?