`shorewall restart` .... Setting up MAC Verification on eth0... Error: No hosts on 00-E0-7D-BA-8C-C5 have the maclist option specified my interfaces file : #ZONE INTERFACE BROADCAST OPTIONS net ppp0 217.96.90.255 local eth0 192.168.1.255 maclist I hope that I should write sth in hosts file ? So I Have wrote : #ZONE HOST(S) OPTIONS #net eth0:192.168.1.0/24 maclist but with this and without the same communicat about "No hosts on 00- ... " -- ---- Oferta jakiej jeszcze nie by³o! Serwer www 60 MB za 99 z³ rocznie Szczegó³y: www.oferta.alpha.pl ----
--On Thursday, December 12, 2002 11:26:30 PM +0100 Maciek Kurkiewicz <maciek@alpha.net.pl> wrote:> `shorewall restart` > .... > Setting up MAC Verification on eth0... > Error: No hosts on 00-E0-7D-BA-8C-C5 have the maclist option specified > > my interfaces file : ># ZONE INTERFACE BROADCAST OPTIONS > net ppp0 217.96.90.255 > local eth0 192.168.1.255 maclist > > I hope that I should write sth in hosts file ? So I Have wrote : ># ZONE HOST(S) OPTIONS ># net eth0:192.168.1.0/24 maclist > > but with this and without the same communicat about "No hosts on 00- ... ">From your previous posts:> I have wrote some IP''s and MAC''s from my network, for example : ># INTERFACE MAC IP ADDRESSES (Optional) > > 00-E0-7D-BA-8C-C5 192.168.1.6,192.168.1.11 > 00-09-2C-30-02-AD 192.168.1.7 > 00-30-4F-1B-9D-D8 192.168.1.73 >Why did you leave the ''INTERFACE'' column blank? -Tom -- Tom Eastep \ Shorewall - iptables made easy Shoreline, \ http://shorewall.sf.net Washington USA \ teastep@shorewall.net
--On Thursday, December 12, 2002 11:26:30 PM +0100 Maciek Kurkiewicz <maciek@alpha.net.pl> wrote:> `shorewall restart` > .... > Setting up MAC Verification on eth0... > Error: No hosts on 00-E0-7D-BA-8C-C5 have the maclist option specified > > my interfaces file : ># ZONE INTERFACE BROADCAST OPTIONS > net ppp0 217.96.90.255 > local eth0 192.168.1.255 maclist > > I hope that I should write sth in hosts file ? So I Have wrote : ># ZONE HOST(S) OPTIONS ># net eth0:192.168.1.0/24 maclistNo -- if it is specified on the interface then you don''t need it for hosts on that interface. -Tom -- Tom Eastep \ Shorewall - iptables made easy Shoreline, \ http://shorewall.sf.net Washington USA \ teastep@shorewall.net
--On Thursday, December 12, 2002 02:29:47 PM -0800 Tom Eastep <teastep@shorewall.net> wrote:> > From your previous posts: > >> I have wrote some IP''s and MAC''s from my network, for example : >># INTERFACE MAC IP ADDRESSES (Optional) >> >> 00-E0-7D-BA-8C-C5 192.168.1.6,192.168.1.11 >> 00-09-2C-30-02-AD 192.168.1.7 >> 00-30-4F-1B-9D-D8 192.168.1.73 >> > > Why did you leave the ''INTERFACE'' column blank? >Also, you either need to use the Shorewall notation for MAC addresses or the standard Linux notation. So 00-E0-7D-BA-8C-C5 must be written either: ~00-E0-7D-BA-8C-C5 (Note the leading "~") or 00:E0:7D:BA:8C:C5 -Tom -- Tom Eastep \ Shorewall - iptables made easy Shoreline, \ http://shorewall.sf.net Washington USA \ teastep@shorewall.net
--On Thursday, December 12, 2002 07:44:40 PM -0700 rmillisl@mailhost.isa-geek.net wrote:>> `shorewall restart` >> .... >> Setting up MAC Verification on eth0... >> Error: No hosts on 00-E0-7D-BA-8C-C5 have the maclist option > > What do you use this for? >See http://shorewall.sf.net/MAC_Validation.html -Tom -- Tom Eastep \ Shorewall - iptables made easy Shoreline, \ http://shorewall.sf.net Washington USA \ teastep@shorewall.net