Allow Access just MAC ADDRESS

  • Good afternoon folks,

    I have a network with a LAN, WAN and a DMZ
    I need to release LAN access to the DMZ, but I would like to release this access by MAC address not by IP.

    I think it has to do with using the captive portal, but I have not found how to do it.

    NOTE: I want to block the user from setting the manual ip on the machine and have access to the firewall, so use the mac address.

    Can someone help me ?

    ;D ;D ;D ;D ;D

  • LAYER 8 Global Moderator

    What exactly are you wanting to prevent access to - the firewall on what port?  And from what interface the dmz?  Where is this user that is going to change his IP?  And you do understand that its just as easy to change mac address.

    You can setup static arp on pfsense - so specific IP can only be talked to on a specific mac address.