I want to put a simple “MAC filter” on the PPP secret, so a user can not connect if he isn’t on the required computer (mac). I know MAC can be spoofed but let’s assume that users are not that good and that the filter will do just fine.
How to do that for VPN & PPPoE users?
(example: my NIC have MAC 11-11-11-11-11-11 and I use PPPoE to connect to MT which then NAT’s me to the internet. Remote address I get is fixed in Secrets, and it is 192.168.20.20. I want that MT doesn’t allow me access to the internet if my source MAC isn’t 11-11-11-11-11-11 or better, that it denies the connection)
(and since there some of users who are routed through the other MT to this one, would this scheme works or is there any better solution for securing the access to the net - only for specified computers)
I want to put a simple “MAC filter” on the PPP secret, so a user can not connect if he isn’t on the required computer (mac). I >>know MAC can be spoofed but let’s assume that users are not that good and that the filter will do just fine.
Note, that if users not that good, they will not use other client passwords. That’s why you do not have to worry about MAC-address, as before customer should configure PPP client with correct username and password.
Anyway, there is specific option at ‘ppp secret’, you may specify MAC-address.
caller-id (text; default: “”) - for PPPoE it is the MAC address (written in CAPITAL letters) a client must connect from.
I didn’t think about using other people passwords, but about connecting his second and third PC and using the internet from those. I want just the one specified computer to be able to connect.
And there’s another problem - caller ID is the IP in active connections, because it first passes through another router, and that segment of the network is using DHCP… so I can’t put IP in the Caller ID…