Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 7 replies
  • Subscribers 41 subscribers
  • Views 8433 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

MAC Whitelist

Edvvde

Dear Community,

is there an easy way or a guide / tutorial thats shows how it´s possible to add a whitelist for allowed MAC addresses that using wifi on a XG appliance?

All i´ve found is for older devices or how to block (blacklist) access for specific MAC addresses.

 

Thanks in advance.

 



This thread was automatically locked due to age.
Parents
  • 0

    Hi,

    I didn't find it in the Knowledge base, so here is a guide how it should work out.
    Please note that you must pay attention to how you have set up your wireless network. Bridged access points to the LAN or other configuration settings could cause problems and you may need to adjust these other settings accordingly.

    1. Add a so called Mac host at System > Hosts and Services > MAC host
    2. Add a firewall rule to allow traffic from Wifi Zone and the specific mac host list to WAN
    3. Don't forget to create a SNAT rule to masquerade traffic when going out to WAN

    Kind regards,

    Intrusus
    Sophos Certified Engineer | Sophos Certified Technician

    private lab:
    XG firewall with SFOS 20.X running on Proxmox

    If a post solves your question use the 'Verify Answer' link

  • +1 in reply to intrusus

    Another approach is to use the MAC Filter in Wireless.

    +

     

    This would allow / deny a Client connecting to the wireless. 

    __________________________________________________________________________________________________________________

  • 0 in reply to LuCar Toni

    Haha that's true, of course. Unfortunately I haven't had anything to do with wireless so far because I run my private lab on a vSphere environment. Thanks for the hint :D

    So, is there a situation when using firewall rules with WiFi as zone is required?

    Intrusus
    Sophos Certified Engineer | Sophos Certified Technician

    private lab:
    XG firewall with SFOS 20.X running on Proxmox

    If a post solves your question use the 'Verify Answer' link

  • 0 in reply to LuCar Toni

    Ahhhh perfect, thanks a lot!

Reply Children
No Data
Unfiltered HTML