Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    How to block an ip address to specific mac address

    Scheduled Pinned Locked Moved Firewalling
    5 Posts 3 Posters 2.9k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • B
      blackmetal
      last edited by

      Hello,
      how can i limit an ip address to use a specific mac address using arp ?
      Thanks,

      1 Reply Last reply Reply Quote 0
      • M
        Metu69salemi
        last edited by

        dhcp reservation with mac, you can set exact ip

        1 Reply Last reply Reply Quote 0
        • B
          blackmetal
          last edited by

          Hi
          My mean is that do something which ip 1.2.3.4 only works if it,s mac address will be xx:xx:xx:xx:xx and that ip will drop if other mac try to use it, i want have anti ip spoofing with it
          Thanks

          1 Reply Last reply Reply Quote 0
          • M
            Metu69salemi
            last edited by

            Sorry don't know any means to do that –> someone who has more knowledge about pfsense

            1 Reply Last reply Reply Quote 0
            • M
              mikeg
              last edited by

              I also want to restrict LAN connectivity to specific machines.  In pfSense's DHCP server, I've created static entries for the designated machines.  I've also selected both "Deny unknown clients" and "Enable Static ARP entries".

              Is there anything else that I can do in pfSense to further prevent unauthorized access?  Would it be useful to create additional firewall rules, or would that just duplicate pfSense's implementation of the DHCP server options?

              In my case, said pfSense instance is a VM in VirtualBox, with LAN bridged to one of the host interfaces.  Are there vulnerabilities in the way pfSense and VirtualBox interact that might permit unauthorized access?  Maybe that's a question for the VirtualBox forum  ;)

              Edit: I forgot to note that I've also set the available range to 192.168.1.1-192.168.1.1 (effectively null).

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.