Pass through mac address on captive portal (Spoof mac address)



  • greeting all,

    i'm very newbie in this pfsense firewall and network security as well. i just wan to ask the expert out there a few questions.. Actually i have a situation, where i enable captive portal on my network (Access Point  with no authentication). In my network there have 3 laptop connect via wireless. all that 3 laptop i use
    "pass-through mac address" method in order for them to connect to the internet. The problem i face here is, when one of this 3 laptop mac address been spoof , he(attacker) be able to by pass the authentication of the captive portal. i realize that the attacker use the mac-spoofing technique to manipulate his original mac addresss into one of this 3 wireless laptop mac address.  so, my question here is, how do i prevent this kind of technique?
    is there any configuration should i implement on pfsense?
    is there any expert suggestion?
    pls… help me.. i really need ur help dude....  :'( :'( :'(

    ur feedback are highly appreciated. Thanx!!  ;)



  • Implementing access control based on MAC addresses alone is a no no IMO. , you better use the simple user manager in the captive portal itself, assign each client a username and pass and thats it, preferably to be a https login page..

    my 2cents.


Log in to reply