On Wed, 17 Dec 2003, GouthamLabs wrote:
> Can any one tell the way of restricting internet
> access using mac address.
By using the arp acl with a Squid binary compiled with support for this
acl (not enabled by default).
But please note that this can only work if the Squid server is on the same
Ethernet segment as the client stations. It does not work if there is any
kind of router inbetween or if the clients connect using other means than
Ethernet (i.e. dialup). This is because MAC addresses is a Ethernet thing
and only exists locally within a Ethernet segment.
It should also be noted that Ethernet MAC addresses is no more secure than
IP addresses. Both can be changed at any time given sufficient privileges
on the client station.
Regards
Henrik
Received on Wed Dec 17 2003 - 02:16:36 MST
This archive was generated by hypermail pre-2.1.9 : Thu Jan 01 2004 - 12:00:14 MST