Blocking Internet Access by MAC Address Using a SonicWALL

Blocking Internet Access by MAC Address Using a SonicWALL

Views:87953|Rating:4.67|View Time:3:13Minutes|Likes:99|Dislikes:7



Learn how you can use a SonicWALL firewall to block Internet access for a host based on it’s network MAC address.

hello Brian Reid here with firewalls comm in this video we're going to show you how you can use your SonicWALL firewall to block a network host from accessing the Internet by using its MAC address this is a pretty popular request because a lot of times networks are using DHCP servers so users workstations IP address may change or you may have a creative user who knows how to go in or can't go in and change from using DHCP to a static IP address so what I'm going to show you now is how you can use the SonicWALL to use the actual MAC address of that network card to prevent it from accessing the Internet okay so for demonstration I'm just going to switch over to the firewalls comm site and you can see I can do a refresh I can do a little browsing around everything's good so now what we want to do is we're going to create two things we're going to create an address object and a firewall policy that'll block my MAC address from accessing the Internet using HTTP in this case so inside the admin console we want to go to network address objects and we want to add a new address object and for the name we'll just put in mac brian's laptop and for the zone in this case i'm on the wireless LAN you would select LAN or any one of the other zones that this users host PC is connected to and the type we want to select MAC address and then we want to put in the actual MAC address of the machine in this case this is the MAC of the wireless laptop I'm on right now and we go ahead and select add now that we've got that address object set up next thing we have to do is create a firewall policy to block outbound access using the HTTP service originating from my MAC address so we'll go to firewall and for the access rule we're going to say from the wireless LAN to the wind we want to add an access rule and the action is going to be deny from the wireless land to the win and the service will just do HTTP and the source is going to be my address object that we just created so the MAC address of my laptop destination we're gonna select any anywhere I want to go on the Internet it's going to block HTTP access and you can have logging enabled so that you can actually see whenever the user tries to access the Internet then you can react to it accordingly we select add and then close and then if I switch back over to the firewalls comm site do an f5 refresh now I have this web page is not available okay so that's how you can use a SonicWALL firewall to prevent machines specific MAC address from accessing resources on the Internet okay if you have any questions or comments please enter in the section below and have a great day

Leave a Reply

Your email address will not be published. Required fields are marked *