Hi all, i’m using mikrotik server and all is fine 
but i want to ask you if someone can tell me how can i make some scripts that can deletes a specific mac address for my customers that attached to the server by built-in dhcp-server or through hotspot.
Also i want that script to prevent anyone from taking server’s ip or mac.
- for the dhcp server create a static lease with some bogus ip, and deny access from that ip.
- use pppoe.
thanks for you,
but i want you to tell me how and please give me a quick example.
Also I’m now using hotspot, please give me another solution for it.
thanks for you
if you are using hotspot, then why do you need to ban by Mac ? you are already protected by the login page
thanks mr. normis,
but i want to tell you that i can make that attack as i foreign, i mean that i can only attach my cable to the ethernet switch and go ahead my attack.
So i want you to help me by ban the server’s mac address to be changed by any hacker’s PC to let my server hanging.
If that is a hacker, he will have no problem changing his Mac.
Your options:
-
Maintain the ARP entries manually, and keep all your client MACs in the ARP list. If someone of them is acting bad - remove from ARP list. See manual about ARP
-
Secure access to your switches. Put a lock on the door where they are installed. Don’t let anyone “just connect to your switch”
-
Use PPPoE instead of Hotspot if your area is really that unsafe. PPPoE is much more secure.
-
Use Firewall to stop attacks and control who can go where
-
Go wireless and force clients to use WPA2 encryption
That posts a whole new type of dangers for the network operator, much more difficult to escalate, and find the “smarties”. 
there is no perfect world
Yes, I mean, Pepo, don’t complicate your life more than you can handle.
Find the bastard, get him out, and your’ happier, than with his money and your headaches.
And do yourself a good: relax…