[1896] in linux-security and linux-alert archive

home help back first fref pref prev next nref lref last post

[linux-security] Re: Ethernet card addr <-> IP

daemon@ATHENA.MIT.EDU (Rogier Wolff)
Wed Jun 17 04:39:41 1998

To: richard@kokoro.com
Date: Wed, 17 Jun 1998 08:13:09 +0200 (MET DST)
Cc: linux-security@redhat.com
In-Reply-To: <Pine.LNX.3.96.980616175000.1160A-100000@kokoro> from "Richard Hakim" at Jun 16, 98 05:50:42 pm
From: R.E.Wolff@BitWizard.nl (Rogier Wolff)
Resent-From: linux-security@redhat.com
Resent-Reply-To: linux-security@redhat.com

Richard Hakim wrote:
> 
> Hi everyone -
> 
> Someone I'm working with has a requirement to map ethernet card addresses
> to unique IP addresses, and then have a Linux IP masquerade server know of
> this mapping list and not allow any data to pass from any ethernet card
> that a) it doesn't know about, or b) isn't assigned the right IP.  Ideally
> it would also log this condition.

Ifconfig your ethernet with the noarp option. Add static (but not
public) arp entries for your hosts. Bingo!

				Roger. 

-- 
Actor asks a collegue: "To what do you owe your success in acting?"
Answer: "Honesty. Once you've learned how to fake that, you've got it made."
-------- Custom Linux device drivers for sale! Call for a quote. ----------
Email: R.E.Wolff@BitWizard.nl || Tel: +31-15-2137555 || FAX: +31-15-2138217

-- 
----------------------------------------------------------------------
Please refer to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------

To unsubscribe:
  mail -s unsubscribe linux-security-request@redhat.com < /dev/null


home help back first fref pref prev next nref lref last post