Blocking by MAC Address

Hello!

Is there a way to block a MAC address in the WatchGuard without needing to add all "Trusted" MACs to the Trusted list (See here: https://watchguard.com/help/docs/help-center/envUS/Content/en-US/Fireware/networksetup/restrict_by_mac_c.html?Highlight=mac%20address

I feel there should be a way to change modes in the list to be "This list wil allow OR Block Traffic" if anything just like the subscription services.

If this isn't a feature already is there a feature request for it?

Thank you!

~T

Comments

  • James_CarsonJames_Carson Moderator, WatchGuard Representative

    Hi @Tristan_Colo

    On the firewall itself, trying to block MAC addresses is problematic, as traffic is often routed to it. We'll only see the MAC if it's on the same subnet as the firewall itself.

    If you're looking to just block a specific user without all of that other work, I'd suggest adding a DHCP reservation for that MAC, and make a rule to just drop their traffic by IP.

    -James Carson
    WatchGuard Customer Support

Sign In to comment.