Blocking by MAC Address

Tristan.ColoTristan.Colo
in Firebox - Proxies

Hello!

Is there a way to block a MAC address in the WatchGuard without needing to add all "Trusted" MACs to the Trusted list (See here: https://watchguard.com/help/docs/help-center/envUS/Content/en-US/Fireware/networksetup/restrict_by_mac_c.html?Highlight=mac%20address

I feel there should be a way to change modes in the list to be "This list wil allow OR Block Traffic" if anything just like the subscription services.

If this isn't a feature already is there a feature request for it?

Thank you!

~T

Comments

  • james.carsonjames.carson Moderator, WatchGuard Representative

    Hi @Tristan_Colo

    On the firewall itself, trying to block MAC addresses is problematic, as traffic is often routed to it. We'll only see the MAC if it's on the same subnet as the firewall itself.

    If you're looking to just block a specific user without all of that other work, I'd suggest adding a DHCP reservation for that MAC, and make a rule to just drop their traffic by IP.

    -James Carson
    WatchGuard Customer Support

  • MouadjalalMouadjalal

    @james.carson hi
    so how to make a rule to drop their traffic by IP ?
    .

  • Bruce_BriggsBruce_Briggs

    Several options:
    1) add the IP addr to the Blocked Sites list
    2) add a policy From: the IP addr and set the policy to Deny

Sign In to comment.