?
Solved

Sonicwall MAC Filtering

Posted on 2012-04-09
7
Medium Priority
?
1,710 Views
Last Modified: 2012-04-09
I want to start MAC filtering at the company I work at with our Sonicwall. But everything I read says that MAC filtering is only done for wireless networks on the Sonicwall. I want to enforce it on our wired network. Does Sonicwall do that?
0
Comment
Question by:new_to_networks
  • 3
  • 3
7 Comments
 
LVL 15

Accepted Solution

by:
Robert Sutton Jr earned 750 total points
ID: 37824596
Is there a reason why you would want to filter by MAC? Yes, wireless is the primary use for this type of filtering and is typically not intended for "Physically" connected devices on your network.
0
 

Author Comment

by:new_to_networks
ID: 37824607
Its to prevent people with unsecure laptops from coming in, plugging into a port and having access to our office network. We want to force them to use our guest wireless. Does that make sense?
0
 
LVL 13

Expert Comment

by:IT-Monkey-Dave
ID: 37824612
You might want to do that to discourage users from accessing resources by plugging in "rogue" devices without permission.
0
SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

 

Author Comment

by:new_to_networks
ID: 37824621
There's a lot of traffic here, so I'm trying to deny unauthorized machines from plugging in to a port.
0
 
LVL 13

Expert Comment

by:IT-Monkey-Dave
ID: 37824630
Is it an Active Directory domain?  You could probably do that via Group Policy.  Computer not a member of domain = No access.
0
 

Author Comment

by:new_to_networks
ID: 37824680
The office is connected to a VPN which goes to our datacenter with our servers/domains etc. If you're away from the office you have to log in to the VPN. If you're in the office, you just plug in and you're already connected. You don't have a user name and password to connect to the servers or anything, but you're on the office network. I'm probably not explaining very well.
0
 
LVL 13

Assisted Solution

by:IT-Monkey-Dave
IT-Monkey-Dave earned 750 total points
ID: 37824933
You could control access by having your DHCP server use "reservations" to issue specific IP addresses to specific MAC addresses.  If someone plugs in a device with a MAC address that doesn't have a reservation, they won't be able to obtain an IP address via DHCP.

Of course a savvy user could assign their system a static IP and bypass DHCP entirely.  Or if everyone already has a static IP, DHCP reservations do you no good.

Sorry but I have to ask: Why no user authentication?
0

Featured Post

Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A 2007 NCSA Cyber Security survey revealed that a mere 4% of the population has a full understanding of firewalls. As business owner, you should be part of that 4% that has a full understanding.
This month, Experts Exchange’s free Course of the Month is focused on CompTIA IT Fundamentals.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…

621 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question