This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Blocking internet access by MAC address

Hi,

I configured the UTM to block devices from accessing the internet with a firewall rule and a Source MAC address list.

This setup worked for me, but now I have enabled the transparent web proxy my firewall rule does not seem to work.

Rulz(A must read) explains why it is not working after enabling the proxy.

Rule #2:
In general, a packet arriving at an interface is handled only by one of the following, in order: DNATs first, then VPNs and Proxies and, finally, manual Routes and Firewall rules.

So what I want to achieve is to block devices by their MAC address from accessing the internet, while also using the transparent proxy. Does any
ideas on how this can be done?

This thread was automatically locked due to age.

Parents

0 ManuelKarl over 11 years ago

Are you using static ips or dhcp? If dynamic, does the utm handle the dhcp-leases? If so, you can do a static mapping to numerous hosts and create a network-group, which is is in the transparent exception (no further pf-rule).
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 ManuelKarl over 11 years ago

Are you using static ips or dhcp? If dynamic, does the utm handle the dhcp-leases? If so, you can do a static mapping to numerous hosts and create a network-group, which is is in the transparent exception (no further pf-rule).
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data