<![CDATA[
<p>http://laddumishra.wordpress.com/2012/01/19/mac-filtering-and-bridging-firewalls-in-linuxubuntu/</p><p><br></p><p>http://litdemon.springnote.com/pages/7919312</p><p>http://ebtables.sourceforge.net/examples/basic.html#all</p><p>원본<br></p><p><br></p><p>http://linux.die.net/man/8/ebtables</p><p>전체 사용법 자세히<br></p><p><br></p><p>http://www.howtoforge.com/forums/showthread.php?t=35177</p><p><br></p><p>부팅 하면 설정이 초기화 되는 어이 없는 현상 일어 나네요 ㅠㅠ..</p><p><br></p><p><br></p><p>http://www.coffer.com/mac_find/</p><p>mac 번호 보기<br></p><p>arp -a</p><p><br></p><p>sudo apt-get install ebtables</p><p><br></p><p>sudo ebtables -F # 설정 초화</p><p>sudo ebtables -t filter -F FORWARD ##일부분만 초기화<br></p><p>sudo ebtables -t nat --atomic-init ## 초기화<br></p><p><br></p><p># 기본 설정 차단..</p><p>sudo ebtables --atomic-file nat_table -t nat --atomic-commit ## 시작 관련<br></p><p>sudo ebtables -P FORWARD DROP</p><p>sudo ebtables -P INPUT DROP</p><p>sudo ebtables -P OUTPUT DROP</p><p><br></p><p># 로그 표시<br></p><p>sudo ebtables -A FORWARD --log-level info --log-ip --log-prefix EBFW</p><p>sudo ebtables -A INPUT --log-level info --log-ip --log-prefix EBFW</p><p>sudo ebtables -A OUTPUT --log-level info --log-ip --log-arp --log-prefix EBFW -j DROP</p><p><br></p><p><br></p><p>sudo ebtables -A FORWARD -s 00:11:22:33:44:55 -p IPV4 -j DROP</p><p>sudo ebtables -A FORWARD -s 00:11:22:33:44:55 -p IPV6 -j DROP<br></p><p>sudo ebtables -A FORWARD -s 00:11:22:33:44:55 -j DROP</p><p><br></p><p><br></p><p>sudo ebtables -A FORWARD -s 00:00:00:00:00:00/FF:FF:FF:FF:FF:FF -p IPV6 -j DROP<br>sudo ebtables -A INPUT -s 00:00:00:00:00:00/FF:FF:FF:FF:FF:FF -p IPV6 -j DROP<br>sudo ebtables -A OUTPUT -s 00:00:00:00:00:00/FF:FF:FF:FF:FF:FF -p IPV6 -j DROP</p><p><br></p><p><br></p><p>sudo ebtables -t broute -A BROUTING -p ipv4 -i eth0 --ip-dst 123.123.123.0/24 -j DROP</p><p>ip4 의 경우..</p><p>ipv6은 안됨..<br></p><p><br></p><p>sudo ebtables -t broute -A BROUTING -p arp -i eth0 --arp-ip-dst 172.16.1.1 -j DROP</p><p>sudo ebtables -t broute -A BROUTING -p ipv4 -i eth0 --ip-dst 172.16.1.1 -j DROP</p><p>sudo ebtables -t broute -A BROUTING -p arp -i eth0 -d $MAC_OF_ETH0 -j DROP<br></p><p><br></p><p>sudo ebtables -A FORWARD -i eth0 -p ip --ip-proto tcp --ip-source-port 80 --ip-source 123.123.123.0/24 -j DROP<br>sudo ebtables -A INPUT -i eth0 -p ip --ip-proto tcp --ip-source-port 80 --ip-source 123.123.123.0/24 -j DROP<br>sudo ebtables -A INPUT -i eth0 -p ip --ip-proto tcp --ip-destination-port 80 --ip-source 123.123.123.0/24 -j DROP<br>sudo ebtables -A INPUT -i eth0 -p ip --ip-destination 123.123.123.0/24 --ip-proto tcp --ip-source-port 80 -j DROP</p><p><br></p><p>sudo ebtables -A INPUT -i eth0 -p ip --ip-proto tcp --ip-source-port 80 --ip-source 0.0.0.0/255.255.255.255 -j DROP<br>sudo ebtables -A INPUT -i eth0 -p ip --ip-proto tcp --ip-destination-port 80 --ip-source 0.0.0.0/255.255.255.255 -j DROP<br></p><p><br></p><br><p>sudo ebtables -P FORWARD DROP<br>sudo ebtables -A FORWARD -p IPv4 -j DROP<br>sudo ebtables -A FORWARD -p ARP -j DROP<br>sudo ebtables -A FORWARD -p LENGTH -j DROP<br>sudo ebtables -A FORWARD --log-level info --log-ip --log-prefix EBFW<br><br>sudo ebtables -P INPUT DROP<br>sudo ebtables -A INPUT -p IPv4 -j DROP<br>sudo ebtables -A INPUT -p ARP -j DROP<br>sudo ebtables -A INPUT -p LENGTH -j DROP<br>sudo ebtables -A INPUT --log-level info --log-ip --log-prefix EBFW<br><br>sudo ebtables -P OUTPUT DROP<br>sudo ebtables -A OUTPUT -p IPv4 -j DROP<br>sudo ebtables -A OUTPUT -p ARP -j DROP<br>sudo ebtables -A OUTPUT -p LENGTH -j DROP<br>sudo ebtables -A OUTPUT --log-level info --log-ip --log-arp --log-prefix EBFW -j DROP<br><br>sudo ebtables -P FORWARD DROP<br>sudo ebtables -A FORWARD -p IPv6 -j DROP<br>sudo ebtables -A FORWARD -p ARP -j DROP<br>sudo ebtables -A FORWARD -p LENGTH -j DROP<br>sudo ebtables -A FORWARD --log-level info --log-ip --log-prefix EBFW<br><br>sudo ebtables -P INPUT DROP<br>sudo ebtables -A INPUT -p IPv6 -j DROP<br>sudo ebtables -A INPUT -p ARP -j DROP<br>sudo ebtables -A INPUT -p LENGTH -j DROP<br>sudo ebtables -A INPUT --log-level info --log-ip --log-prefix EBFW<br><br>sudo ebtables -P OUTPUT DROP<br>sudo ebtables -A OUTPUT -p IPv6 -j DROP<br>sudo ebtables -A OUTPUT -p ARP -j DROP<br>sudo ebtables -A OUTPUT -p LENGTH -j DROP<br>sudo ebtables -A OUTPUT --log-level info --log-ip --log-arp --log-prefix EBFW -j DROP<br></p><p><br></p><p>최정 정책 저장<br>sudo ebtables --atomic-file nat_table -t nat --atomic-save</p><p><br></p><p>불러 오기<br></p><p>sudo ebtables-atomic ebtables -t nat --atomic-commit<br></p><p><br></p><p><br></p><p>http://johanv.org/node/190<br></p><p>-_- 아무리 해도 실행이 안된다 ㅠㅠ..<br></p><p>여기에 맨 아래 줄에 추가 하라고 한다..<br></p><p>/etc/rc.local<br></p><p>EBTABLES_ATOMIC_FILE=/root/ebtables-atomic ebtables -t nat --atomic-commit</p><p>exit 0</p><p><br></p><p>sudo cp -f /etc/rc.local ~/<br></p><p>sudo perl -pi -e "s/exit 0/#Modified ebtables/g" /etc/rc.local</p><p>sudo sh -c 'echo "EBTABLES_ATOMIC_FILE=/root/ebtables-atomic ebtables -t nat --atomic-commit" >> /etc/rc.local'</p><p>sudo sh -c 'echo "exit 0" >> /etc/rc.local'</p><p><br></p><p><br></p><p>보기</p><p>sudo ebtables -L<br></p>
<!-- -->
]]>
카페 게시글
보안
실패노트 우분투 mac 필터 ebtables
동우
추천 0
조회 1,455
12.06.20 21:01
댓글 1
다음검색
첫댓글 http://beginlinux.com/sec_train_m/10-traincat/1310-set-up-the-bridge