Welcome, Guest. Please login or register.
Did you miss your activation email?
Saturday 21 December 2024, 02:04:20 pm

Login with username, password and session length

Get the new Updates directly from Endian  HERE
14262 Posts in 4377 Topics by 6517 Members
Latest Member: Sandro
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  General Support
| | |-+  Filtering Clients by MAC
0 Members and 1 Guest are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: Filtering Clients by MAC  (Read 8551 times)
JavaBoy
Jr. Member
*
Offline Offline

Posts: 1


« on: Tuesday 27 July 2010, 05:32:19 pm »

Hi there,

I have allready browsed around in the forum, but my english isn't so good
and I'm also not sure for which keywords im searching.

I'm in a huge dormitory and all LAN-Ports are on one big Switch without
any V-Lans or port-security. So there are over 100 PCs in one physical
network. These are facts which I can't affect.

No a group of about 15 students whould like to rent and share a Internet
connection. But if only 15 students are paying, I would prefer to share
the connection with only 15 students ;-)

How can I manage to allow outgoing traffic only to a few people?
Something like MAC-Address-Whitlisting or somethin simmilar?

Thanks for your effords...
Logged
DFen
Full Member
***
Offline Offline

Posts: 46


« Reply #1 on: Wednesday 28 July 2010, 03:49:47 pm »

JavaBoy

I have not tried this - however

Method 1

In Outgoing traffic set up rule source MAC
<MAC> <RED> <any> ALLOW
<MAC> <RED> <any> ALLOW
...
<Green> <RED> <any> DENY

And

Enable DHCP on Green
Add custom lines (see google "man dnsmasq") to allow specific MAC addresses

Or maybe some combination of the two.


Alternatively try

Create openvpn accounts for each "client"
Set firewall to only allow Internet access from openvpn users (SNAT rule could do this)
Logged
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.063 seconds with 18 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com