Mac address filtering on ATP/USG

DiegoF · July 2021

it would be very useful to be able to create security policies based on mac address objects. In Zyxel firewall there is no possibility to create mac address objects like in other vendors firewall. Is this a feature you plan to implement on your firewalls as well?

dpipro · July 2021

Hello @DiegoF

as a workaround you can configure IP/MAC binding to specify a fixed IP to each MAC address.

Best regards

DiegoF · July 2021

Hello @dpipro
thanks for the suggestion, for a small enviroment your workaround it's ok but i need this feature for deploying firewall in school with hundreds of student's device

Best regards

PeterUK · July 2021

Why not use a switch?

DiegoF · July 2021

PeterUK said:

Why not use a switch?

the need is for wireless client, many hundreds

dpipro · July 2021

Hello @DiegoF

you can configure a dedicated wireless SSID for students with an associated VLAN in a different subnet. With this configuration you can isolate the students network from the LAN and you can add security policies for them. What you think?

PeterUK · July 2021

DiegoF said:

PeterUK said:

Why not use a switch?

the need is for wireless client, many hundreds

That does not stop from using a switch for MAC filtering you can go from ATP/USG to switch to AP or you can get a AP with filtering.

Nazareno · October 2022

Hi, i'm looking for the same issue.. I need to create mac address filter on dhcp, so only authorized MAC address can connect to the lan...

PeterUK · October 2022

Nazareno said:

Hi, i'm looking for the same issue.. I need to create mac address filter on dhcp, so only authorized MAC address can connect to the lan...

You can do this in the VPN300

Image: https://us.v-cdn.net/6029482/uploads/editor/no/8uvptyu2udyd.png

However this does not stop DHCP from getting a IP by DHCP....

Mac address filtering on ATP/USG

Active · Last Updated July 2021

Comments

Categories

Security Help Center