Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Pass through mac address on captive portal (Spoof mac address)

    Scheduled Pinned Locked Moved Captive Portal
    2 Posts 2 Posters 8.1k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • G
      g33k
      last edited by

      greeting all,

      i'm very newbie in this pfsense firewall and network security as well. i just wan to ask the expert out there a few questions.. Actually i have a situation, where i enable captive portal on my network (Access Point  with no authentication). In my network there have 3 laptop connect via wireless. all that 3 laptop i use
      "pass-through mac address" method in order for them to connect to the internet. The problem i face here is, when one of this 3 laptop mac address been spoof , he(attacker) be able to by pass the authentication of the captive portal. i realize that the attacker use the mac-spoofing technique to manipulate his original mac addresss into one of this 3 wireless laptop mac address.  so, my question here is, how do i prevent this kind of technique?
      is there any configuration should i implement on pfsense?
      is there any expert suggestion?
      pls… help me.. i really need ur help dude....  :'( :'( :'(

      ur feedback are highly appreciated. Thanx!!  ;)

      It no use crying over spilt milk.

      1 Reply Last reply Reply Quote 0
      • S
        Still
        last edited by

        Implementing access control based on MAC addresses alone is a no no IMO. , you better use the simple user manager in the captive portal itself, assign each client a username and pass and thats it, preferably to be a https login page..

        my 2cents.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.