On Thu, 2012-02-02 at 09:18 -0600, I.S.C. William wrote:
> As I can have more than two MAC addresses to apply a rule
> in shorewall, I have the following to block port 443:
>
>
> REJECT loc:~00-11-22-33-44-55 net tcp 443
>
>
> I try this
>
>
> REJECT loc:~00-11-22-33-44-55,~AA-BB-CC-DD-EE-FF net tcp 443
That works for me and generates:
-A loc-net -p 6 --dport 443 -m mac --mac-source 00:11:22:33:44:55 -j reject
-A loc-net -p 6 --dport 443 -m mac --mac-source AA:BB:CC:DD:EE:FF -j reject
Which version of Shorewall are you using.
-Tom
--
Tom Eastep \ When I die, I want to go like my Grandfather who
Shoreline, \ died peacefully in his sleep. Not screaming like
Washington, USA \ all of the passengers in his car
http://shorewall.net \________________________________________________
------------------------------------------------------------------------------
Keep Your Developer Skills Current with LearnDevNow!
The most comprehensive online learning library for Microsoft developers
is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3,
Metro Style Apps, more. Free future releases when you subscribe now!
http://p.sf.net/sfu/learndevnow-d2d