Restrict acces between computers based on mac address

hendi

How can I restrict access to the LAN network between PCs, based on the mac address? All new devices should be able to assign an IP and have access to the Internet, but only certain macs should be able to access other computers, printers from the LAN network.

Thank you

Gertjan

@hendi said in Restrict acces between computers based on mac address:

How can I restrict access to the LAN network between PCs

Word's most known OS, "Windows" has you covered.
Other OSs probably also.

Delete the know network, and reconnect.
You will see a message that asks if your 'new' network should be considered private or public.
Chose public and you can't connect to any device on LAN - other devices can't connect to your PC.
Only 'internet access' works.

Btw : devices on the same network don't use the gateway/router (pfSense) to communicate with each other.

Bob.Dig

@gertjan said in Restrict acces between computers based on mac address:

Chose public and you can't connect to any device on LAN

You still can connect but others don't.

@hendi pfSense only works with IP-addresses, no MAC.

JKnott

@hendi said in Restrict acces between computers based on mac address:

How can I restrict access to the LAN network between PCs, based on the mac address?

You can't. PfSense doesn't filter on MAC addresses.

michmoor

Get a switch that can do VACLs or PVLANs.
Pfsense isnt the gear where this is done at.