MVGtechnology
asked on
router/firewall
Hello,
I have a network with more than 150 users,
its a school,
since the school was opened we notice that the internet is running very slow, so I ran a scan on the network to see whose on it.
well I find a set students online with they iphon, ipad etc......
we have password on the wifi but the teachers gives out the password.
I would like your recommendation for a router\firewall that I can use to restrict these students from getting on to the network,
im looking for something that when I see the students device on the network, I want to be able to block them by mac address,
also I would like to block websites, such as facebook, porn, etc......
thanks in advance for your help
I have a network with more than 150 users,
its a school,
since the school was opened we notice that the internet is running very slow, so I ran a scan on the network to see whose on it.
well I find a set students online with they iphon, ipad etc......
we have password on the wifi but the teachers gives out the password.
I would like your recommendation for a router\firewall that I can use to restrict these students from getting on to the network,
im looking for something that when I see the students device on the network, I want to be able to block them by mac address,
also I would like to block websites, such as facebook, porn, etc......
thanks in advance for your help
What brand/model[s] of APs are you running now?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
You could consider a squid proxy for caching of web content, and squidguard for content filtering based on categories. Both are open source.
MAC address filtering may not be effective if you use network segmentation.
You could restrict internet access based on user agent string (ie: limit what types of browser access the internet).
MAC address filtering may not be effective if you use network segmentation.
You could restrict internet access based on user agent string (ie: limit what types of browser access the internet).
Any of the higher end Netgear or Linksys wireless routers can block Mac addresses. If you have a decent budget to work with I would highly recommend going with a more industrial solution like Aerohive or Ruckus.