Hi
is there any way to get the port security as described here for the CRS1xx/CRS2xx
https://wiki.mikrotik.com/wiki/Manual:CRS1xx/2xx_series_switches_examples#Limited_MAC_Access_per_Port
also on a CRS326-24G-2S+ working?
Or do we need to wait and hope for SwOS 3 ?
Thx
Off hand, I don’t see a way to specify a MAC on a specific port, but you can enable port lock which locks the port to the first MAC that is connected. See the Forwarding tab.
Hi
thanks for the idea. but i have more then one MAC behind this port. Im thinking to get an hAP lite just as a bridge connected and define bridge filter rules on that box.
I know not very elegant but it might work.
Assuming that the hAP is also “just” a bridge. Would the filter then just be appplied to the forward chain or would i need to assign it also to the bridge or port itself ?
so i would implment:
0 chain=forward action=accept src-mac-address=00:06:98:01:1F:A1/FF:FF:FF:FF:FF:FF log=no
log-prefix=""
1 chain=forward action=accept dst-mac-address=00:06:98:01:1F:A1/FF:FF:FF:FF:FF:FF log=no
log-prefix=""
and so on or all MACs
And the last statement would be to block everything.
Correct ?
Never used a bridge, so can’t help you there. However your firewall rules look OK - I think.