Welcome, Guest. Please login or register.
Did you miss your activation email?
Friday 13 December 2024, 07:51:50 am

Login with username, password and session length

Visit the Official Endian Bug tracker  HERE
14261 Posts in 4377 Topics by 6517 Members
Latest Member: Sandro
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  General Support
| | |-+  Filtering Clients by MAC
0 Members and 1 Guest are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: Filtering Clients by MAC  (Read 8297 times)
JavaBoy
Jr. Member
*
Offline Offline

Posts: 1


« on: Tuesday 27 July 2010, 05:32:19 pm »

Hi there,

I have allready browsed around in the forum, but my english isn't so good
and I'm also not sure for which keywords im searching.

I'm in a huge dormitory and all LAN-Ports are on one big Switch without
any V-Lans or port-security. So there are over 100 PCs in one physical
network. These are facts which I can't affect.

No a group of about 15 students whould like to rent and share a Internet
connection. But if only 15 students are paying, I would prefer to share
the connection with only 15 students ;-)

How can I manage to allow outgoing traffic only to a few people?
Something like MAC-Address-Whitlisting or somethin simmilar?

Thanks for your effords...
Logged
DFen
Full Member
***
Offline Offline

Posts: 46


« Reply #1 on: Wednesday 28 July 2010, 03:49:47 pm »

JavaBoy

I have not tried this - however

Method 1

In Outgoing traffic set up rule source MAC
<MAC> <RED> <any> ALLOW
<MAC> <RED> <any> ALLOW
...
<Green> <RED> <any> DENY

And

Enable DHCP on Green
Add custom lines (see google "man dnsmasq") to allow specific MAC addresses

Or maybe some combination of the two.


Alternatively try

Create openvpn accounts for each "client"
Set firewall to only allow Internet access from openvpn users (SNAT rule could do this)
Logged
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.063 seconds with 17 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com