Block MAC address from internet access - settings not working

Question

Hi, 
 Sophos UTM 9.503-4 
 I have completed the setup to block a mac address from accessing the internet however traffic continues to flow to the device. 
 1. Network Definitions - MAC Address Definitions - MAC Address List - "Block MAC" [Device MAC Address] 
 2. Firewall - Rule - [Network] >> Any >> [Any] - Drop - Source ["Block MAC"] - placed at the top of firewall rules 
 3. Firewall Log - Filter [Device MAC Address] 
 [Time] - Packet Filter rule [Rule #] - TCP - [Device IP:Port] - [Destination IP:Port] - [SYN] .... - srcmac={Device MAC Address] dstmac=[Destination MAC Address] 
 I am testing the device and navigate the internet without encumbrance. 
 What have I missed? 
 
 Thanks, 
 David

Karlos · Answer

Hi DavidHudson 
 Proxy functions including Web Proxy will precede configured Firewall Rules and MAC filtering can not be applied to Web Proxy. 
 Your only options for Web Filtering is by IP address or User Authentication. 
 If you're able to assign a static IP to that device that you would like to block. Then you can use that to create a Web Filter profile that will block access to all. 
 Another option is to add that device (again only by IP or hostname) to the Transparent Mode Skiplist and it will bypass the proxy and the Firewall rules will apply. 
 Cheers, Karlos