洲進
[root@jporder root]# grep -i '221.4.133.93' /var/log/httpd/access_log
221.4.133.93 - - [25/Jan/2010:12:25:19 +0800] "POST /redhat/kupdate HTTP/1.0" 200 177 "-" "Mozilla/4.0 (compat
ible; MSIE 5.02; Windows 98; 7500750C0EF2A90826003E5A)"

黑名單(單一台PC)
/sbin/iptables -t nat -A PREROUTING -m mac --mac-source 00-00-00-00-00-01 -p tcp --dport 80 -j DNAT --to 192.168.20.2:88
/sbin/iptables -t nat -A PREROUTING -m mac --mac-source 00-00-00-00-00-01 -p tcp --dport 443 -j DNAT --to 192.168.20.2:88
白名單(單一台PC)
#/sbin/iptables -t nat -A PREROUTING -m mac --mac-source 00-00-00-00-00-02 -p tcp --dport 80 -j DNAT --to 192.168.20.2:88
#/sbin/iptables -t nat -A PREROUTING -m mac --mac-source 00-00-00-00-00-02 -p tcp --dport 443 -j DNAT --to 192.168.20.2:88
灰名單(單一台, 各台PC要個別設)
/sbin/iptables -t nat -A PREROUTING -m mac --mac-source 00-00-00-00-00-03 -p tcp --dport 80 -j DNAT --to 192.168.20.2:88
/sbin/iptables -t nat -A PREROUTING -m mac --mac-source 00-00-00-00-00-03 -p tcp --dport 443 -j DNAT --to 192.168.20.2:88
至
/sbin/iptables -t nat -A PREROUTING -m mac --mac-source 00-00-00-00-00-99 -p tcp --dport 80 -j DNAT --to 192.168.20.2:88
/sbin/iptables -t nat -A PREROUTING -m mac --mac-source 00-00-00-00-00-99 -p tcp --dport 443 -j DNAT --to 192.168.20.2:88