Thread Info
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Policy for DHCP user without captive portal

ricky fernandus

Hay,

 

First, this is my topology :

 

Second, DHCP server was on Core switch

 

For now i can limit and restrict user (LAN-wired with static IP), what i wanna ask, theres some user connect using Wifi which is gain IP Address from DHCP Server, is there any way limit or restrict some user which is connected from wifi ??

 

I had one method = look their MAC Address, but it need effort to do that, and absolutely not the best way.



This thread was automatically locked due to age.
  • 0

    Hi Ricky,

    How will XG firewall recognise the users? They must have a unique value; MAC address or a WiFi network.

    If you are looking for a solution where you just need to restrict few users out of the whole WiFi network, then I will suggest, define a MAC-IP binding range on your core switch (DHCP server), which will assign specific IP when a particular device MAC address requests it. Then create a firewall rule to restrict that IP range! Orelse, configure User authentication on XG.

    Thanks,

    Sachin Gurung
    Team Lead | Sophos Technical Support
    Knowledge Base  |  @SophosSupport  |  Video tutorials
    Remember to like a post.  If a post (on a question thread) solves your question use the 'This helped me' link.