D-Link DSL-604 User Guide - Page 37

MAC Access Control - port forward

Get D-Link DSL-604 PDF manuals and user guides View all D-Link DSL-604 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 37 highlights

DSL-604+ ADSL Ethernet Router User's Guide MAC Access Control For added security you can opt to use Access Control based on MAC address. This feature lets you create a list of MAC addresses that are allowed or denied association with the Router through the wireless interface. When it is enabled, the access point is instructed to forward packets only from wireless devices only if the MAC address of the device is granted association. Packets received through the wireless interface from non-authorized devices, including other access points, will be dropped. Packets received on the Ethernet port continue to be forwarded to authorized MAC addresses and broadcast packets from the Ethernet are broadcast to all stations, authorized and non-authorized, unless the destination MAC address has been explicitly denied association (see next paragraph). You may also enter MAC addresses that are explicitly denied permission to associate. In this case, all packets with a destination MAC address that has been denied permission will be dropped. Broadcast and unicast packets are NOT forwarded to devices that are denied permission through the wireless interface. Keep in mind that there are drawbacks to using Access Control. Any wireless device that is added to the network must be granted explicit permission to join by adding it to the Authorized MAC Table. Be sure to include the MAC address of other access points that you want to associate with the Router. As with other security measures, throughput can be affected since each packet header is examined before the packet is forwarded or dropped. When you have completed making changes to the list of qualified MAC addresses, click the OK button. You can save and restart or continue to change Router settings. To Grant Access To grant permission to associate with the Router follow these steps: 1. Type in the MAC address with no spaces or dashes in the MAC address entry field. The entry field displays all zeros when empty. Attempts to enter an invalid MAC address will be detected and you will be informed with an error message. 2. Select Granted from the State drop-down menu. 3. Click the Add button to add the MAC address to the list of MAC addresses. 4. When the list of qualified MAC addresses is complete, click the OK button and save the changes. To Deny Access To deny permission to associate with the Router follow these steps: 1. Type in the MAC address with no spaces or dashes in the MAC address entry field. The entry field displays all zeros when empty. Attempts to enter an invalid MAC address will be detected and you will be informed with an error message. 2. Select Denied from the State drop-down menu. 3. Click the Add button to add the MAC address to the list of MAC addresses. 4. When the list of qualified MAC addresses is complete, click the OK button and save the changes. To Delete a MAC Address from the List To delete a MAC address from the list of qualified MAC addresses: 1. Select the MAC address from the list using the MAC Address drop-down menu. 2. Click the Delete button to remove the MAC address from the list of MAC addresses. 3. When you are finished modifying the list, click the OK button and save the changes. 27

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
DSL-604+ ADSL Ethernet Router User’s Guide
27
MAC Access Control
For added security you can opt to use Access Control based on MAC address. This feature lets you create a list
of MAC addresses that are allowed or denied association with the Router through the wireless interface. When it
is enabled, the access point is instructed to forward packets only from wireless devices only if the MAC address
of the device is granted association. Packets received through the wireless interface from non-authorized devices,
including other access points, will be dropped. Packets received on the Ethernet port continue to be forwarded to
authorized MAC addresses and broadcast packets from the Ethernet are broadcast to all stations, authorized and
non-authorized, unless the destination MAC address has been explicitly denied association (see next paragraph).
You may also enter MAC addresses that are explicitly denied permission to associate. In this case, all packets
with a destination MAC address that has been denied permission will be dropped. Broadcast and unicast packets
are NOT forwarded to devices that are denied permission through the wireless interface.
Keep in mind that there are drawbacks to using Access Control. Any wireless device that is added to the network
must be granted explicit permission to join by adding it to the Authorized MAC Table. Be sure to include the
MAC address of other access points that you want to associate with the Router. As with other security measures,
throughput can be affected since each packet header is examined before the packet is forwarded or dropped.
When you have completed making changes to the list of qualified MAC addresses, click the
OK
button. You can
save and restart or continue to change Router settings.
To Grant Access
To grant permission to associate with the Router follow these steps:
1.
Type in the MAC address with no spaces or dashes in the MAC address entry field. The entry field
displays all zeros when empty. Attempts to enter an invalid MAC address will be detected and you will
be informed with an error message.
2.
Select
Granted
from the
State
drop-down menu.
3.
Click the Add button to add the MAC address to the list of MAC addresses.
4.
When the list of qualified MAC addresses is complete, click the
OK
button and save the changes.
To Deny Access
To deny permission to associate with the Router follow these steps:
1.
Type in the MAC address with no spaces or dashes in the MAC address entry field. The entry field
displays all zeros when empty. Attempts to enter an invalid MAC address will be detected and you will
be informed with an error message.
2.
Select
Denied
from the
State
drop-down menu.
3.
Click the
Add
button to add the MAC address to the list of MAC addresses.
4.
When the list of qualified MAC addresses is complete, click the
OK
button and save the changes.
To Delete a MAC Address from the List
To delete a MAC address from the list of qualified MAC addresses:
1.
Select the MAC address from the list using the
MAC Address
drop-down menu.
2.
Click the
Delete
button to remove the MAC address from the list of MAC addresses.
3.
When you are finished modifying the list, click the
OK
button and save the changes.