Hi
I want to white list known MAC address on a subnet and block\deny any
new MACs.
If a new MAC address is seen the firewall should not allow that MAC to
pass traffic out that segment.
A similar concept to MAC address locking on Wifi AP's
It would be great to have this as a feature on a protected segment of a
GTA firewall.
The only other way I can manually script a diff on files containing
gnatbox arp entries
and then arp poison the IP associated to the new MAC (not the correct
way)
or spoof or bind the offending MAC with ifconfig\macmakeup\SMAC and bind
to secondary interface.
Any better ideas? (no 802.1x NAC\NAP please)
Regards
Eric
------------------------------------------------------
To unsubscribe: gb-users-unsubscribe_at_gta_dot_com
For additional commands: gb-users-help_at_gta_dot_com
Archive: http://archives.gnatbox.com/gb-users/
|