iptables mac address filtering not work

Posted by Tony Lee on Ask Ubuntu See other posts from Ask Ubuntu or by Tony Lee
Published on 2012-03-26T03:31:48Z Indexed on 2012/03/26 5:42 UTC
Read the original article Hit count: 306

Filed under:

11.10

|

firewall

|

iptables

I block every port default by ufw

and add iptables rules like this:

sudo iptables -A INPUT -p tcp --dport 1723 -m mac --mac-source 00:11:22:33:44:55 -j ACCEPT

then I list iptables INPUT rules:

sudo iptables -L INPUT --line-numbers

Chain INPUT (policy DROP)
num  target     prot opt source               destination
1    ACCEPT     udp  --  anywhere             anywhere            udp dpt:domain
2    ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:domain
3    ACCEPT     udp  --  anywhere             anywhere            udp dpt:bootps
4    ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:bootps
5    ufw-before-logging-input  all  --  anywhere             anywhere
6    ufw-before-input  all  --  anywhere             anywhere
7    ufw-after-input  all  --  anywhere             anywhere
8    ufw-after-logging-input  all  --  anywhere             anywhere
9    ufw-reject-input  all  --  anywhere             anywhere
10   ufw-track-input  all  --  anywhere             anywhere
11   ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:1723 MAC 00:11:22:33:44:55

but I can't visit my server:1723

Is there sth wrong?

I use Ubuntu 11.10

© Ask Ubuntu or respective owner

Related posts about 11.10

Upgrade Kubuntu 11.10 to 12.10 I get error code that 11.10 is outdated

as seen on Ask Ubuntu - Search for 'Ask Ubuntu'
I installed Kubuntu 11.10 on top of Windows 7. Everything works fine. I tried to update 11.10 to 12.10 and I get error Code that 11.10 is outdated and not supported. Update stops. I downloaded 12.10 iso but there is no upgrade option, just install. How can I remove the 11.10 installation and install… >>> More
Intel GMA 500 support for 11.10

as seen on Ask Ubuntu - Search for 'Ask Ubuntu'
I would like to know if the new open-source video driver included in kernel 3.0.x for the Intel GMA 500 will be included by default in the kernel that will be shipped in OO. The driver support of this GFX chipset has always been poor and mainly community-driven, now finally we have a KMS open-source… >>> More
Error Ubuntu 11.10 despues de instalar [Error after installing Ubuntu 11.10]

as seen on Ask Ubuntu - Search for 'Ask Ubuntu'
instale ubuntu 11.10, termino de instalar y no tiene nada, ni aplicaciones, ni esa barrita lateral de unity, no tiene nada, ni si quiera la barra donde aparece la hora; porque? y me aparece un cuadro diciendo que hay un error en el disco y que el fallo es inminente , que es? SMART no entiendo, ayuda Y… >>> More
How to enable 3D acceleration under VMware workstation 8, Ubuntu 11.10 host, Ubuntu 11.10 guest

as seen on Ask Ubuntu - Search for 'Ask Ubuntu'
I saw there are similar questions, but I don't think they answer exactly my questions. Did anyone managed to get 3D acceleration work under VMWare workstation 8? I have VMware 8.01 installed on Ubuntu 11.10. The guest I am trying is also Ubuntu 11.10. I manually installed vmware-tools and it went… >>> More
The volume "filesystem root" has only 0 bytes disk space remaining?

as seen on Ask Ubuntu - Search for 'Ask Ubuntu'
I installed 11.10 ~two weeks ago and run into some strange troubles recently. Installation was on brand new laptop with clear 128GB SSD. I opted for encrypting home directory. Apart from that I accepted defaults during the installation. There is no other OS on my laptop. I had circa 40GB in use… >>> More

Related posts about firewall

Managed hosting firewall vs managing own firewall

as seen on Server Fault - Search for 'Server Fault'
I posted on stackoverflow as to the overall benefits of managed hosting vs non-managed hosting. The more I think about it, it seems to boil down to one question: should I use a managed host because they take care of the firewall, or would I be okay managing my own, software firewall? The sites… >>> More
Hardware firewall vs VMWare firewall appliance

as seen on Server Fault - Search for 'Server Fault'
We have a debate in our office going on whether it's necessary to get a hardware firewall or set up a virtual one on our VMWare cluster. Our environment consists of 3 server nodes (16 cores w/ 64 GB RAM each) over 2x 1 GB switches w/ an iSCSI shared storage array. Assuming that we would be dedicating… >>> More
Firewall behind firewall

as seen on Server Fault - Search for 'Server Fault'
I've recently changed jobs and I've been set up with a new workstation. On all previous places where I've been working they've had some sort of local firewall installed on each and every workstation - but here I've been told not to activate it because it is not necessary since we're already behind… >>> More
We have no SW Firewall behind our office HW firewall, admin says its not req'd

as seen on Server Fault - Search for 'Server Fault'
I've recently changed jobs and I've been set up with a new workstation. On all previous places where I've been working they've had some sort of local firewall installed on each and every workstation - but here I've been told not to activate it because it is not necessary since we're already behind… >>> More
Can't get FTP to work on centOS 5.6

as seen on Server Fault - Search for 'Server Fault'
Hi guys I have been trying for a few hours to install and get FTP to work... I did yum install ftp and yum install vsftpd They all installed and are running but when I try to use filezilla or some other client I just can't connect....I've tried connecting on port 21 and port 990 ....nothing! These… >>> More