Q: Firewalling using MAC-Address
-
Hello,
It's possible to make a firewall rule allowing everything based on MAC-Address ?
Example: youtube website is blocked, but not blocked on my personal computer.
This question dont work based on IP, for security matters. -
The easiest way to do it is by IP address… but then create ipfw rules that make sure machines (MAC addresses) do not use privileged addresses.
See this thread https://forum.pfsense.org/index.php?topic=71198.0 for an explanation of how I do it.
-
Thanks!
I'm going to read the post and check if I can end up with something that works that way. -
If you're happy forcing all addresses to be statically assigned, you can switch that flag on the DHCP page. The other option is to try to get Arpwatch (package) working - but I've never had much luck with it.,