Solved

MAC address filtering capable switch

Posted on 2006-11-15
3
1,886 Views
Last Modified: 2012-06-27
Hi there

I am trying to achieve a solution and have spent many hours on the internet already looking for devices. I am not that up with the play on the hardware levels and layers so hoping someone can communicate with me in simple terms to point me in the right direction.

I want to provide access to the internet for our users but restrict them to the MAC address that they supply us.  So i am looking for a switch that is capable of having an ACL list of these MAC addresses. This list will possibly contain up to 1000 MAC addresses and we would want the ability to update this ACL to the switch on a regular basis, as and when new address get added or old ones removed. This same list will sit on each switch over 60 offices therefore allowing users from one office to use the internet at another office easily when they visit it.

There is a lot of talk about the Cisco Catalyst router and switches, but i have not seen much comment on other brands like NetGear, Allied Telesyn etc. Please can you suggest different manufacturers that produce this type of capable switch.

As a sideline, i am also looking for a WAP that will do the same - i.e. be updateable with a list that can contain up to 1000 MAC's. At the moment we use really basic 3COM WAP's and put the MAC addresses in but it has just reached saturation point with about 20 MAC addresses.

Thanks,
Erika
0
Comment
Question by:Barfoots
3 Comments
 
LVL 27

Accepted Solution

by:
pseudocyber earned 500 total points
ID: 17955502
For a layer 2 access control list (MAC addresses) you're going to need pro gear - such as Cisco to do it.  You're not going to get that kind of feature from SOHO gear like Netgear, Linksys, etc.

Cisco catalyst switches can do it.  For the AP's, you would just need to check the tech specs to make sure the AP can hold that many MACs in it.

However, I question whether you're going about this the right way.  What you're proposing is very difficult to mange.  Rather, a server designed to limit Internet access and monitor it is what you need.  We use Surf Control for this.  You could use it or another such as Microsoft ISA server.

0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Hello , This is a short article on how would you go about enabling traceoptions on a Juniper router . Traceoptions are similar to Cisco debug commands but these traceoptions are implemented in Juniper networks router . The following demonstr…
Creating an OSPF network that automatically (dynamically) reroutes network traffic over other connections to prevent network downtime.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

895 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now