1.Is there any way to limit dhcp server to assign ip for clients that are authenticated ,not all the clients that are physically connected?
2.If not is it possible to prevent connecting unknown computers to lan? Is mac filter the only way?
3.What about user manage? Is it possible to authenticat clients by user manager before ip assignment by dhcp server?
The most secure/safe/effective method seems to be “Dot1x”, but IMO unnecessarily made so complicated by the standards bodies:
https://wiki.mikrotik.com/wiki/Manual:Interface/Dot1x
https://en.wikipedia.org/wiki/IEEE_802.1X
Dot1x is used when we have mikrotik switch .
Is there any solution When 30 clients are connected to a hub and the hub is connected to mikrotik router interface
There is nothing reliable to authenticate devices other than 802.1x. You can set up MAC filtering, but it is very simple to get around for anyone that wishes to.
So, you are concerned of security, but are using a hub (instead of a switch) for 30 clients?
What hub model is it?
Can you clarify that. Do you really mean mikrotik SWITCH or ROUTER?
I don’t see anything in SwitchOS to support 802.1x