• Downloads
• Configuring Wireless MAC Access Lists    

• Related Topics
• Virtual Routers Overview
• Wireless Settings in a Security Device Overview
• Configuring General Wireless Settings
• Configuring Advanced Wireless Settings
• Configuring Wireless General SSID Settings
• Configuring SSID Authentication and Encryption
• Reactivating Wireless Connections

Configuring Wireless MAC Access Lists

The access control list (ACL) controls the wireless clients that can connect to the wireless network. The ACL identifies clients by their MAC addresses and directs the device to permit or deny access for each address. The ACL settings apply globally to all basic service sets (BSSs). The following topics explains different methods to configure ACLs.

Configuring MAC Access Mode

You can configure the ACL to operate in one of the following modes:

• Disabled—When enabled, the security device does not filter MAC addresses. This is the default mode.
• Enabled—When enabled, the security device permits access to all hosts except those marked with a Deny control status. Use this option when you want to deny specific hosts, but allow unknown hosts to connect.
• Strict—When enabled, the security device denies access to all hosts except those marked with an Allow control status. Use this option when you want to restrict network access to specific hosts.

To configure the ACL mode:

1. In the NSM navigation tree, select Device Manager > Devices. Double-click the device object to open the device configuration.
2. In the device navigation tree, select Wireless Settings > MAC Access List, and then select the MAC Access Mode.

Configuring MAC Addresses

You can specify a maximum of 128 MAC addresses. To add an address:

1. In the NSM navigation tree, select Device Manager > Devices. Double-click the device object to open the device configuration.
2. In the device navigation tree, select Wireless Settings > MAC Access List, and then click the Add icon to display the New MAC address dialog box. Configure the following:

• MAC Address—Defines the MAC address of the client.
• Control Status—Defines the action the device takes when a client with the specified MAC address is detected.

  For example:

  • If the control status is set to Deny and the MAC access mode is set to Strict, the device denies the client.
  • If the control status is set to Allow and the MAC access mode is Deny or Strict, the device allows the client to connect.

Note: NSM does not support the learned MAC address list.