[Dnsmasq-discuss] Blocking DHCPv6 requests from a specific client
Alex Malinovich
alexmalinovich at protonmail.com
Mon Jul 8 22:35:14 UTC 2024
> And that is what a man page is for. Or 100 tutorials on the web.
>
> Hint --limit in man iptables-extensions
Thank you! The hint was useful, the RTFM jab, not so much.
Here's what I came up with if anyone can sanity check it for me? It seems to be working but I'm honestly not 100% if I might not inadvertently be blocking those ports in unexpected places.
ip6tables -A INPUT -p udp -m udp --dport 546:547 -m mac --mac-source DE:AD:BE:EF:00:11 -m limit --limit 1/hour -j ACCEPT
ip6tables -A INPUT -p udp -m udp --dport 546:547 -m mac --mac-source DE:AD:BE:EF:00:11 -j DROP
More information about the Dnsmasq-discuss
mailing list