LAN MAC filtering

Discussion in 'DD-WRT Firmware' started by dr_nedo, Dec 18, 2005.

  1. dr_nedo

    dr_nedo Network Guru Member

    Hi guys, i know that this might be sorta n00b question, but to whom should i turn myself asking if not to my most beloved forum?

    I have my wrt54GSv4 flashed with dd-wrt v23/16.11.2005. Everything runs smooth, I've got DHCP set with dnsmasq, which, apparently works very well.

    Till now I've had internet provided via my local building network, running on 192.168.1.x, thus I've had building network cable plugged to my wrt's WAN port. My home PCs were plugged to the LAN ports, everything was working smooth, my wifi clients were happy and so was I.
    Anyway, the internet connection sucked ass and my admin was a total f**-up, so me and some of my neighbors had to find a different solution.

    So finally I've installed a cable modem with 4MB connection at my home and decided to share with 3 of my neighbors using the same cable infrastructure as there was.
    I've plugged the cable modem to my wrt's WAN port, my local pcs to port 1 and 2 on the LAN side of my wrt. The old cable, the cable that goes to all of my building switches (used beforehand as the WAN) i've put to lan port 4. I've created manually a static network basing on 192.168.10.x , the router is 192.168.10.x.
    Set up all the QoS stuff, router security and so on, torrent stuff,
    everything is working great!

    So what the hell do I want?
    My question concerns the following
    There are two networks running on my building's cables:
    192.168.1.x - the old network, i don't want to have anything to do with it
    192.168.10.x - my network, sharing the 4MB/s connection, giving me joy and happiness.
    The gateway to 192.168.10.x is = my router.
    And now goes the heavy shit:
    if i set ip address to 192.168.10.x on any computer residing in the building infrastructure, even if i don't want it to go through my router and share my connection it can suck up my 4MBs

    What I want is LAN MAC filtering, unfortunately i can see that it is available via http interface on dd-wrt only for WLAN clients.
    Can I do it somehow? Maybe iptables would help, but I'm not too keen on setting up linux-based firewalls.

    Please help :)
  2. dr_nedo

    dr_nedo Network Guru Member

    yo guys, is that actually so difficult? lan mac filtering at the gateway? am I really so noob?
  3. 4Access

    4Access Network Guru Member

    The Access Restrictions feature should work fine for wired clients...
  4. dr_nedo

    dr_nedo Network Guru Member

    thanks for the reply, finally :D

    Hopefully I've figured out that there is a possibility to limit via access restrictions, unfortunately it's only 8 pc's per policy.

    It's just thinking of any shell-based solution that has driven me to this question.
  5. dr_nedo

    dr_nedo Network Guru Member

    unfortunately this wasn't what I was looking for.

    The Access Restricions feature would allow me to block only specific mac addresses or an ip range.
    If I set my 10-address MAC pool to allow access I do not have an option to block the rest.

    What I want is to deny everything but the specified mac address pool.

    Ain't that possible?
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice