Pete

I can get sme to spoof a mac address via a script. Id rather not make it permanent and have a migrated way to restore after failure, ie not using the mac address.

But i can get you going monday but it will only work till rebooted.

If we can do that Tuesday that would be great I need to order a replacement server to so need a spec really 

Ill get you a spec.

 

re mac

 

I'll assume it's eth1...then substitute the x's for whatever you want:
ifconfig eth1 down hw ether xx:xx:xx:xx:xx:xx
ifconfig eth1 up

I have used macchanger before now.

This is a CLI utility which you can add the flag --mac= followed by device eth0

 

As James says this kind of thing will only work until a reboot.

You will need to add a script or change the configuration to keep it.

Not well up on CentOS but Debian would be in /etc/network

 

For issues like this, would it not be best to have the modem going via a router then to your server. Or do you have a reason for it being setup in this way?

 

 

For issues like this, would it not be best to have the modem going via a router then to your server. Or do you have a reason for it being setup in this way?

Well I could have set up several ip's via a router but I never got round to it. I wanted the server to be the Firewall, not that it has prevented **** getting onto the engineers PC in the rest area.

IIRC we have a centos founder as memeber ?

Well I could have set up several ip's via a router but I never got round to it. I wanted the server to be the Firewall, not that it has prevented **** getting onto the engineers PC in the rest area.

a firewall wont.

Id need to setup danguardian for that which is what i use at work. But can block some usefull stuff too. I use whitelists for websites to allow downloads etc

a firewall wont.

Id need to setup danguardian for that which is what i use at work. But can block some usefull stuff too. I use whitelists for websites to allow downloads etc

 

Anygood ? was going to use PFsense or smoothwall next

Ish, I'd prefer something other than clam for the Av side. It's ok but needs a lot of tweaking. But as its free I can't moan. I find the unofficial clam lists more use to be honest

clam using unofficial plugins

Well I could have set up several ip's via a router but I never got round to it. I wanted the server to be the Firewall, not that it has prevented **** getting onto the engineers PC in the rest area.

 

I thought it would be something like that.

Yes you won't stop stuff like that with just a firewall.

 

I have always been happy with letting the router do all the firewall/management related tasks mentioned, I just keep it's FW upto date.

Allso use ufw on each machine too.

 

I have always found Clam a PITA, the last time I used it I remember it being very heavy on resources.