Home > Online Help
Controlling access with a MAC Address Access Control List
Then, I downloaded 5.4.1 from the Fortinet site, then ran the setup to the point where the Install button appears. I then searched for the.dmg in the fctupdate folder, ran it from there and I'm good. Best Video Software for the Mac How To Run MacOS High Sierra or Another OS on Your Mac Best Graphic Design Software the Mac Stay Safe with Best Free Password. Developed in-house by Fortinet.
A MAC Address Access Control List (ACL) allows or blocks access on a network interface that includes a DHCP server. If the interface does not use DHCP, or if you want to limit network access to a larger group such as employee devices, it is better to create a device group and specify that group in your security policies.
A MAC Address ACL functions as either
- a list of devices to block, allowing all other devices
or
Fortigate Client For Linux
- a list of devices to allow, blocking all other devices
Allowed devices are assigned an IP address. The Assign IP action assigns the device an IP address from the DHCP range. In a list of allowed devices, you can also use the Reserve IP action to always provide a specific IP address to the device.
The Unknown MAC Address entry applies to 'other' unknown, unlisted devices. Its action must be opposite to that of the other entries. In an allow list, it must block. In a block list, it must allow.
To create a MAC Address ACL to allow only specific devices
- Go to the SSID or network interface configuration.
- In the DHCP Server section, expand Advanced.
DHCP Server must be enabled. - In MAC Reservation + Access Control, select Create New and enter an allowed device’s MAC Address.
- In the IP or Action column, select one of:
Fortigate Vpn Client For Mac
- Assign IP — device is assigned an IP address from the DHCP server address range.
- Reserve IP — device is assigned the IP address that you specify.
Fortigate Vpn
- Repeat Steps Controlling access with a MAC Address Access Control List and Controlling access with a MAC Address Access Control List for each additional MAC address entry.
- Set the Unknown MAC Address entry IP or Action to Block.
Devices not in the list will be blocked. - Select OK.
To create a MAC Address ACL to block specific devices
Fortigate Download
- Go to the SSID or network interface configuration.
- In the DHCP Server section, expand Advanced.
DHCP Server must be enabled. - In MAC Reservation + Access Control, select Create New and enter the MAC Address of a device that must be blocked.
- In the IP or Action column, select Block.
- Repeat Steps Controlling access with a MAC Address Access Control List and Controlling access with a MAC Address Access Control List for each device that must be blocked.
- Set the Unknown MAC Address entry IP or Action to Assign IP.
Devices not in the list will be assigned IP addresses. - Select OK.
Copyright © 2019 Fortinet, Inc. All Rights Reserved. | Terms of Service | Privacy Policy