-running RH 5.2 with ip masquerading (ipfwadm)
-using 32 bit addressing to masquerade the machines one by one, e.g., for
ipfwadm -F -a m -S 192.168.1.3/32 -D 0.0.0.0/0
The problem is I have several IP numbers I have to masquerade for drop
connections. I have other machines on the network for which I can't allow
internet access. I would like to prevent these machines from stealing one of
the "free" masqueraded IP numbers by changing the IP address on their
machine and thus using the masqueraded connection.
==> I think I would like to bind the MAC address to the IP address and
disallow any illegal IP/MAC combination.
How do I do it? I was told this is where arp comes in.