From: "Daevid Vincent" <daevid@daevid.com>
To: <gentoo-user@lists.gentoo.org>
Subject: [gentoo-user] OT: how do I kick a MAC address off my hostapd WiFi network?
Date: Tue, 9 Oct 2007 23:35:20 -0700 [thread overview]
Message-ID: <003601c80b07$cd438510$450a0a0a@locutus> (raw)
I have my WiFi network on a hostapd controlled 10.10.10.* range and my
wired LAN on a 192.168.1.* range.
I try to be a "nice guy" and leave the WiFi 'open' (no WEP) as it's
segregated and I use some proper shorewall rules to route things nicely
for my various privileged devices. Also, some WiFi devices I have just
don't support WEP, and it's a real hassle to get others working with
WEP.
I don't mind the occasional person jumping on to check movie times or
traffic or get email or whatever. I think bandwidth should be free for
everyone and it is sure a life saver when you need to quickly get online
for something.
Anyways, sometimes I have stupid neighbors who don't quite "get it" and
will just blindly let their computers connect to my WAP. UGH! They sit
on it for hours and days and generally piss me off.
How can I boot someone off my network? I usually add them to my
shorewall blacklist file, and then:
/etc/init.d/dhcp restart
/etc/init.d/shorewall restart
But I still see them on there it seems.
http://daevid.com/examples/dhcp
(essentially it's doing an 'arp -n' and then I parse that info and make
it pretty)
daevid dhcp # arp -n
Address HWtype HWaddress Flags Mask
Iface
10.10.10.7 ether 00:06:25:12:4A:D8 C
wlan0
10.10.10.27 ether 00:19:7E:C5:02:AB C
wlan0
67.168.160.1 ether 00:01:5C:23:D7:02 C
eth0
10.10.10.69 ether 00:02:6F:21:DF:5C C
wlan0
192.168.1.18 ether 00:0C:F1:A8:F7:F3 C
eth1
I googled and found this little nugget that I thought would work:
http://www.linuxforums.org/forum/linux-newbie/5752-dhcpd-iptables-deny-m
ac-addresses.html
# iptables -A FORWARD -m mac --mac-source 00:19:7E:C5:02:AB -j DROP
But I still see this squatter. And I can feel my network being sluggish
as they're probably downloading a lot of stuff.
--
gentoo-user@gentoo.org mailing list
next reply other threads:[~2007-10-10 6:52 UTC|newest]
Thread overview: 12+ messages / expand[flat|nested] mbox.gz Atom feed top
2007-10-10 6:35 Daevid Vincent [this message]
2007-10-10 8:10 ` [gentoo-user] OT: how do I kick a MAC address off my hostapd WiFi network? Alan McKinnon
2007-10-10 8:18 ` Ow Mun Heng
2007-10-10 19:37 ` Mick
[not found] ` <470D52ED.8020007@bellsouth.net>
2007-10-10 23:50 ` Daevid Vincent
2007-10-11 0:16 ` Albert Hopkins
2007-10-11 8:28 ` Neil Bothwick
2007-10-11 0:18 ` Dan Farrell
2007-10-11 0:07 ` Ted Ozolins
2007-10-11 0:23 ` Dan Farrell
2007-10-12 14:21 ` Ophidian
2007-10-10 8:23 ` dexter
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to='003601c80b07$cd438510$450a0a0a@locutus' \
--to=daevid@daevid.com \
--cc=gentoo-user@lists.gentoo.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox