Hot Downloads

Welcome, Guest
Username: Password: Remember me

TOPIC: Block devices based on MAC address

Block devices based on MAC address 3 years 11 months ago #38194

  • calvinlemon
  • calvinlemon's Avatar
We have a Cisco ASA 5510 for our firewall, I would like to know how can I block devices based on their MAC address from accessing our network and also getting out to the internet. Basically, if someone brings a WAP into our building and plug it into our network, i'd like to prevent it from giving them network/internet access. Thanks.
The administrator has disabled public write access.

Re: Block devices based on MAC address 3 years 11 months ago #38195

  • chrnxR
  • chrnxR's Avatar
  • Offline
  • New Member
  • Posts: 19
  • Thank you received: 6
  • Karma: 3
Hey calvinlemon,

First id like to say that in such a case its always helpful to have a map which shows the network topology. That makes it easier to argue and it often gives us information we can now only guess about.

However i think blocking the MAC Adresses on the firewall wouldnt solve the Problem you have explained, since the attackers then still have access to the network, which is imo even worse.

Since i dont have any clue about your topology, here are some comon suggestions, plz let me know if it works out for you...

1. Dont patch the ports (patchpanel -> switch) you are not going to use.
2. There is a feature called "Port Security" available on many switches. It allows you to create a list of MAC or IP Adresses who gain Access to a specific Port of the switch. In that way you could block unauthorized clients from connecting to the Network (In most cases).

hope this was what you were looking for.


-chrnxR
the dreams of yesterday are the hopes of today and the reality of tomorrow.

-Robert H. Goddard
The administrator has disabled public write access.
Time to create page: 0.071 seconds

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup