Blocking Specific MAC & Blocking Multiple MAC

Blocking Specific MAC:

acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8
acl bad_MAC arp 192.168.200.100/32
acl our_network src 192.168.200.0/24
http_access deny bad_MAC
http_access allow our_network
http_access deny all


Blocking Multiple MAC:

We could write down the MACs one by one separated with ‘spaces’. Or we could create a file (in this case /etc/squid/invalid_MAC_file) containing the MACs.

48:5B:39:0C:CE:10
00:1F:D0:63:A3:03

acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8
acl invalid_MAC src 48:5B:39:0C:CE:10 00:1F:D0:63:A3:03
acl invalid_MAC src “/etc/squid/invalid_MAC_file”
acl our_network src 192.168.200.0/24
OR
http_access deny invalid_MAC
http_access allow our_network
http_access deny all

Comments

Post a Comment

Popular posts from this blog

Squid Configuration

#apt-get install squid Minimum Configuration:                    edit      http_port 8080   acl localhost src 127.0.0.1/32 acl to_localhost dst 127.0.0.0/8 add      acl our_network src 192.168.200.0/24   In the part “ # Recommended minimum configuration:”   add       http_access allow our_network http_access deny all   save & exit (Esc+Shift+:wq!) # /etc/init.d/squid restart
Read more

Squint Configure

1.       Download actual version of squint and extract it: http://www.ledge.co.za/software/squint/ wget www.ledge.co.za/software/squint/squint-0.3.18.tar.gz 2.       tar – zxvf squint-0.3.18.tar.gz         3.        cd squint-0.3.18            ##To see installation steps --- more INSTALL   ### 4.       cp squint.pl squint.cron.sh /usr/local/bin/ 5.         cd /usr/local/bin# restart squint.pl squint.cron.sh squint.cron.sh init 6.       squint.cron.sh all 7.       squint.cron.sh regen 8.       Now Edit BASEDIR=”/var/www/localhost/htdocs/squint”          ### unhash this Line and Changed to >     ...
Read more

Postfix SASL authentication with SMTP port 465:

  By default postfix SMTP works on 25 port.   You can check this by following command with the output below: #netstat -nat tcp        0      0 0.0.0.0:25             0.0.0.0:*               LISTEN    Here we will change the port to 465 with SASL authentication. It is useful technique to fight against spam. Users those travel here and there with their laptops need not to change their e-mail client software settings also. Here is how we can do it.   Step 1 . Edit the file /etc/dovecot.conf and make sure your auth default section has the lines below. auth default { socket listen {   client {    path = /var/spool/postfix/private/auth    mode = 0660    user = postfix    group = postfix     }   }   mechanisms = plain login } Step 2 . Edit /etc/postfix/main.cf , fin...
Read more

How to Change the Logo from Zimbra Admin Console

Image
To get a professional look, most of Mail Server Administrator wants to change the default Zimbra logo. Today I am going to show how to replace the Zimbra logo with  your own company logo.   Step:1 Firstly, logo size has to change as specified here, otherwise the image may not display correctly. ·          300x48 pixels (Login screen) ·          200x28 pixels (Zimbra interface, top left corner) Step: 2 Rename the logos as follows. LoginBanner_white.png AppBanner_white.png Step:3 Go to the Logo directory on zimbra and rename the existing default logos as backup: root@hmail:~# su zimbra zimbra@hmail:~$ /opt/zimbra/jetty_base/webapps/zimbra/skins/_base/logos$   LoginBanner_white_back.png AppBanner_white_back.png Step:4 Upload your own company images on Logo Directory and change the ownership permission of the images zimbra@hmail:~$ chown zimbra:zimbra LoginBan...
Read more