Configuring MAC filtering on the switch port using ACL binding policy on Wireless Network Manager (WNM)
02/28/2023 4 People found this article helpful 279,081 Views
Description
Access Control List (ACL) allows you to define classification rules or establish criteria to provide security to your network by blocking unauthorized users and allowing authorized users to access specific areas or resources. ACLs can provide basic security for access to the network by controlling whether packets are forwarded or blocked at the Switch ports. Access Control Lists (ACLs) are filters that allow you to classify data packets according to a particular content in the packet header, such as the source address, destination address, source port number, destination port number, and more. Packet classifiers identify flows for more efficient processing. Each filter defines the conditions that must match for inclusion in the filter. ACLs are used to provide traffic flow control, restrict contents of routing updates, and determine which types of traffic are forwarded or blocked. This criterion can be specified on a basis of the MAC address or IP address.
Resolution
ACL BINDING ON A SWITCH through Wireless Network Manager (WNM)
- Login to https://cloud.sonicwall.com/ using your Mysonicwall credentials and select the right tenant on the top
- Select the Wireless Network manager
- Navigate to Security| Matched object.
- Select Add (+) icon to create a new Matched objects for the allowed MAC address
- Give a Name, Description, Type: MAC, Source MAC address: User defined, and Enter the allowed MAC address on the Source MAC value field as shown in the below picture.
- Create one more address object to Deny all.
- Navigate to Security|Matched object|Matched Groups.
- Select Add (+) icon to create a new Matched group for the allowed MAC address
- Select the allowed MAC address and add it and Save it.
- Select Add (+) icon to create a new Matched group for the Deny MAC address
- Navigate to Security|Security Policies|Switches.
- Select Add (+) icon to create a ACL security policy
- Give a Name and Type: ACL security policy.
- Select the Allow matched group from the drop-down and select Allow mode.
- Select +Add matched group
- Select the Deny all matched group from the drop-down and select Deny mode.
- Navigate to Network|Devices|Switches
- Select the Switch and click on Edit/configure icon on the switch
- Navigate to Ports|ACL
- Select the port from the list and select the ACL security policy from the drop-down and enable MAC as shown in the below picture.
- Save the changes.
How to Test:
If another machine whose MAC address is not listed in the cache would try to communicate through the switch port. They won't be able to connect through the switch port.
Related Articles
Categories
Was This Article Helpful?
YESNO