[1896] in linux-security and linux-alert archive
[linux-security] Re: Ethernet card addr <-> IP
daemon@ATHENA.MIT.EDU (Rogier Wolff)
Wed Jun 17 04:39:41 1998
To: richard@kokoro.com
Date: Wed, 17 Jun 1998 08:13:09 +0200 (MET DST)
Cc: linux-security@redhat.com
In-Reply-To: <Pine.LNX.3.96.980616175000.1160A-100000@kokoro> from "Richard Hakim" at Jun 16, 98 05:50:42 pm
From: R.E.Wolff@BitWizard.nl (Rogier Wolff)
Resent-From: linux-security@redhat.com
Resent-Reply-To: linux-security@redhat.com
Richard Hakim wrote:
>
> Hi everyone -
>
> Someone I'm working with has a requirement to map ethernet card addresses
> to unique IP addresses, and then have a Linux IP masquerade server know of
> this mapping list and not allow any data to pass from any ethernet card
> that a) it doesn't know about, or b) isn't assigned the right IP. Ideally
> it would also log this condition.
Ifconfig your ethernet with the noarp option. Add static (but not
public) arp entries for your hosts. Bingo!
Roger.
--
Actor asks a collegue: "To what do you owe your success in acting?"
Answer: "Honesty. Once you've learned how to fake that, you've got it made."
-------- Custom Linux device drivers for sale! Call for a quote. ----------
Email: R.E.Wolff@BitWizard.nl || Tel: +31-15-2137555 || FAX: +31-15-2138217
--
----------------------------------------------------------------------
Please refer to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------
To unsubscribe:
mail -s unsubscribe linux-security-request@redhat.com < /dev/null