|
Title: Filtering Clients by MAC Post by: JavaBoy on Tuesday 27 July 2010, 05:32:19 pm Hi there,
I have allready browsed around in the forum, but my english isn't so good and I'm also not sure for which keywords im searching. I'm in a huge dormitory and all LAN-Ports are on one big Switch without any V-Lans or port-security. So there are over 100 PCs in one physical network. These are facts which I can't affect. No a group of about 15 students whould like to rent and share a Internet connection. But if only 15 students are paying, I would prefer to share the connection with only 15 students ;-) How can I manage to allow outgoing traffic only to a few people? Something like MAC-Address-Whitlisting or somethin simmilar? Thanks for your effords... Title: Re: Filtering Clients by MAC Post by: DFen on Wednesday 28 July 2010, 03:49:47 pm JavaBoy
I have not tried this - however Method 1 In Outgoing traffic set up rule source MAC <MAC> <RED> <any> ALLOW <MAC> <RED> <any> ALLOW ... <Green> <RED> <any> DENY And Enable DHCP on Green Add custom lines (see google "man dnsmasq") to allow specific MAC addresses Or maybe some combination of the two. Alternatively try Create openvpn accounts for each "client" Set firewall to only allow Internet access from openvpn users (SNAT rule could do this) |