Community discussions

MikroTik App
  4. RouterOS
  5. Beginner Basics

No out LAN if not on allowed MAC ACL

Locked
 
hurymak
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 76
Joined: Mon Oct 06, 2014 1:31 pm

No out LAN if not on allowed MAC ACL

Tue Feb 07, 2017 9:46 am

I need to implement followed functionality:
mikrotik wifi, all clients can connect.
All clients can have full access to local network, lan.
But if some client want to access internet, get out of lan, he has to:
be on special acl list, have his mac on it.
How to do it?
thanks.
Top
 
Sob
Forum Guru
Forum Guru
Posts: 9121
Joined: Mon Apr 20, 2009 9:11 pm

Re: No out LAN if not on allowed MAC ACL

Thu Feb 09, 2017 1:35 am

I'm not aware of any MAC list in RouterOS, but you can do something like this:
Code: Select all
/ip firewall filter
add action=jump chain=forward in-interface=<LAN> out-interface=<WAN> jump-target=outgoing
add action=accept chain=outgoing src-mac-address=00:00:00:00:00:01
add action=accept chain=outgoing src-mac-address=00:00:00:00:00:02
add action=reject chain=outgoing reject-with=icmp-admin-prohibited
Top
Locked

Who is online

Users browsing this forum: AdamT77, fxcd, loloski, zalciukaz and 92 guests
  4. RouterOS
  5. Beginner Basics