0 Kudos

MAC address access-group and access-list

Submitted by -
Status: New Idea

Can you please implement access-group and access-list policies on the edgerouter-x line so we can define per eth port MAC address permissions.

by Ubiquiti Employee
on ‎12-10-2018 08:27 PM

Hi @dan7,


The EdgeRouter allows you to match on MAC addresses in firewall rules. Is this an option for you?





‎12-11-2018 04:34 AM - edited ‎12-11-2018 11:08 AM



Yes, you can create firewall rules based on a single MAC address, however if you want to, for example, create a LAN_IN rule that only allows traffic from a list of 100 MAC addresses as source (with a default drop everything else rule) you cannot do that.

You can only use IP ranges, subnets or port-groups or generate rules individually for each MAC address you want to allow.


If there's a way to achieve this, please share your wisdom.

Love your products nevertheless.