Solved

MAC address filtering capable switch

Posted on 2006-11-15
3
1,885 Views
Last Modified: 2012-06-27
Hi there

I am trying to achieve a solution and have spent many hours on the internet already looking for devices. I am not that up with the play on the hardware levels and layers so hoping someone can communicate with me in simple terms to point me in the right direction.

I want to provide access to the internet for our users but restrict them to the MAC address that they supply us.  So i am looking for a switch that is capable of having an ACL list of these MAC addresses. This list will possibly contain up to 1000 MAC addresses and we would want the ability to update this ACL to the switch on a regular basis, as and when new address get added or old ones removed. This same list will sit on each switch over 60 offices therefore allowing users from one office to use the internet at another office easily when they visit it.

There is a lot of talk about the Cisco Catalyst router and switches, but i have not seen much comment on other brands like NetGear, Allied Telesyn etc. Please can you suggest different manufacturers that produce this type of capable switch.

As a sideline, i am also looking for a WAP that will do the same - i.e. be updateable with a list that can contain up to 1000 MAC's. At the moment we use really basic 3COM WAP's and put the MAC addresses in but it has just reached saturation point with about 20 MAC addresses.

Thanks,
Erika
0
Comment
Question by:Barfoots
3 Comments
 
LVL 27

Accepted Solution

by:
pseudocyber earned 500 total points
ID: 17955502
For a layer 2 access control list (MAC addresses) you're going to need pro gear - such as Cisco to do it.  You're not going to get that kind of feature from SOHO gear like Netgear, Linksys, etc.

Cisco catalyst switches can do it.  For the AP's, you would just need to check the tech specs to make sure the AP can hold that many MACs in it.

However, I question whether you're going about this the right way.  What you're proposing is very difficult to mange.  Rather, a server designed to limit Internet access and monitor it is what you need.  We use Surf Control for this.  You could use it or another such as Microsoft ISA server.

0

Featured Post

Enabling OSINT in Activity Based Intelligence

Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

Join & Write a Comment

Suggested Solutions

The Cisco RV042 router is a popular small network interfacing device that is often used as an internet gateway. Network administrators need to get at the management interface to make settings, change passwords, etc. This access is generally done usi…
Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now