Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    How to setup schedule by mac address?

    Firewalling
    4
    9
    1967
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      shuhdonk last edited by

      How do I set a schedule to only allow access at certain times based on mac address?  I want to set a schedule for my daughter to only be allowed access between from 6am to 9pm on her ipad and pc. How do I go about configuring pfsense to do this?

      thanks again all

      1 Reply Last reply Reply Quote 0
      • A
        armss001 last edited by

        With great difficulty, First you need to set her static IP's, then create an alias for her, you then need to create an allow schedule and use the advanced options to apply that to an allow rule for the alias on the firewall. Under that rule you need a block all rule for that alias.

        this is how it should work and works for some people. Unfortunately I am not one of those lucky people, so let me know how it goes please? your rules should look like this…


        1 Reply Last reply Reply Quote 0
        • S
          shuhdonk last edited by

          I currently have static is set based on her mac addesses on her devices via dhcp server.  Just not sure how to do the rest haha.

          1 Reply Last reply Reply Quote 0
          • KOM
            KOM last edited by

            https://forum.pfsense.org/index.php?topic=101938.0

            1 Reply Last reply Reply Quote 0
            • A
              armss001 last edited by

              1. Create an IP Alias for all her static IP's.
              2. Create A schedule for the times you want her to be ALLOWED on the internet.
              3. Create a pass rule with the source as the alias and in the advanced section at the bottom, select your schedule you just created.
              4. Create a block rule, again with the source as the alias.
              5. in the rules table make sure the pass is above the block, but the block needs to be the default an allow rule.

              The rules should apply to IPV4 and "Any" protocol. Also across "any" port.

              1 Reply Last reply Reply Quote 0
              • S
                shuhdonk last edited by

                @armss001:

                1. Create an IP Alias for all her static IP's.
                2. Create A schedule for the times you want her to be ALLOWED on the internet.
                3. Create a pass rule with the source as the alias and in the advanced section at the bottom, select your schedule you just created.
                4. Create a block rule, again with the source as the alias.
                5. in the rules table make sure the pass is above the block, but the block needs to be the default an allow rule.

                The rules should apply to IPV4 and "Any" protocol. Also across "any" port.

                Not sure what you mean by "but the block needs to be the default an allow rule."

                I have added everything as you mentioned here except maybe that last step because I am not sure what you mean.. as of now the devices are still able to get online.

                Here are the settings I have now.

                ** the firewall rules suppose to be under wan or lan?

                **changed to lan as instructed and working great now it seems.












                1 Reply Last reply Reply Quote 0
                • awebster
                  awebster last edited by

                  You're almost there…but you want the rules to apply to the LAN interface.
                  Edit the sydpc and sydipad (4) rules and change the Interface to LAN instead of WAN.
                  That way it will work as you expect.

                  –A.

                  1 Reply Last reply Reply Quote 0
                  • S
                    shuhdonk last edited by

                    sweet, its working.. thanks for the help all! :)

                    1 Reply Last reply Reply Quote 0
                    • A
                      armss001 last edited by

                      Sorry I missed your reply's Glad to see its working for you.

                      Sorry I missed an important word out, It should have read "but the block needs to be the above the default an allow rule".

                      1 Reply Last reply Reply Quote 0
                      • First post
                        Last post