?
Solved

Can I employ mac address filtering on a windows server?

Posted on 2004-10-03
6
Medium Priority
?
184 Views
Last Modified: 2013-11-13
I know of some networking equipment that can allow me to filter out user access by their mac address, and I've even read posts about some linux distros that let you do it.

But can this be done in Windows?

I personally don't mind going to linux or the hardware level if necessary, but I work with mostly Windows-friendly people,
and if I can find a way to filter out incoming requests to the machine by simply installing something onto the windows box, that'd be great.

So, suggestions anybody?
Or am I going to have to spring for some new equipment/OS's?

As always, thanks.
0
Comment
Question by:Inward_Spiral
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
6 Comments
 
LVL 9

Expert Comment

by:jamesreddy
ID: 12213632
Well....that depends.  If you have an ISA server, this is quite possible.  However, if not...there is something that may be of use to you.  If you run your own DHCP server, you can have DHCP automatically assign bum addresses (like default gateways) to any MAC address you want.  It's called a DHCP reservation.  Simply get the MAC address of the machine you want to deny access to your network and create a reservation for it in DHCP properties.  You can assign it a seperate default gateway, to prevent Internet access...or assign it completely different addresses to deny it access to your network.

James
0
 
LVL 5

Accepted Solution

by:
zerofield earned 400 total points
ID: 12213638
the only way possible to do this with windows is to essentially force the machine to lie to itself.  you can force a fake layer 3 address such as 127.0.0.1 to the layer 2 addresses with a command like:

arp -s 127.0.0.1 0011aabbcc

maybe 127.0.0.2 or something, im not sure what arp'ing a fake address to your localhost does..

this is ghetto and only works to filter known addresses, its not something that'd filter all BUT known addresses as MAC filtering would ideally work.

you could always employ a little $30 linksys router to do this i guess..

if you want to be a little more sophisticated, nearly any modern catalyst as well as linux can do this much more gracefully.
0
 
LVL 5

Expert Comment

by:zerofield
ID: 12213642
oh, yea, his suggestion would work too.  we typed simultaneously.

i think the common answer here is going to be that it's not really meant to happen with windows by default.  as with any function that involves MS software, you'll need to find an alternative or spend money ;)
0

Featured Post

Looking for a new Web Host?

Lunarpages' assortment of hosting products and solutions ensure a perfect fit for anyone looking to get their vision or products to market. Our award winning customer support and 30-day money back guarantee show the pride we take in being the industry's premier MSP.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Worried about if Apple can protect your documents, photos, and everything else that gets stored in iCloud? Read on to find out what Apple really uses to make things secure.
During and after that shift to cloud, one area that still poses a struggle for many organizations is what to do with their department file shares.
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…
Suggested Courses

650 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question