#!/bin/bash
#Copyright 2004 William Stearns <wstearns@pobox.com>
#Released under the GPL
#Automatically generated by Modwall, http://www.stearns.org/modwall/

#Note that this module depends on system specific configuration
#so your output will differ.

#==== Iptables modules required ==== mac
#==== Brick specific help ====
#	The macchk module checks for valid IP address/Mac address/Interface
#triplets.  You will need to fill in the LegalMacs and NeverCheckMac
#arrays in /etc/modwall/modwall.conf for this to be functional.
#	Not good for DHCP environments where IP addresses change (where
#there are too few addresses for the machines that need them).

/usr/bin/sudo /sbin/iptables -N macchk
/usr/bin/sudo /sbin/iptables -A INPUT -i ! lo -j macchk
/usr/bin/sudo /sbin/iptables -A FORWARD -j macchk