Filtering on source MAC address
The following example shows how to define a firewall instance that contains one rule, which filters packets only on source medium access control (MAC) address. This rule allows packets coming from a specific computer, identified by its MAC address rather than its IP address. The instance is applied to packets inbound on the dp0p1p1 interface.
To create an instance that filters on source MAC address, perform the following steps in configuration mode.
Step | Command |
---|---|
Create the configuration node for the FWTEST-5 firewall instance and its rule 1. This rule accepts traffic matching the specified criteria. |
|
Define a rule that filters traffic with the 00:13:ce:29:be:e7 source MAC address. |
|
Apply FWTEST-5 to inbound packets on dp0p1p1. |
|
Commit the configuration. |
|
Show the configuration. |
|