My router has the ability to disallow traffic from any device not listed, so the MAC address is the key. If it was as easy as setting an IP address to gain access then this feature seems meaningless and I can't see why it would even be there. Yes, the IP address is allocated via DHCP and a table I've populated
In addition, there is a Wireless Filter List. MAC addresses are used to allow or disallow access. If the MAC isn't in the list then there's no access to WiFi, and that applies to smartphone, Kindles and so on, as we've discovered. I didn't mention this before as the topic was about assigning IP addresses, not security
This seems quite a time sink for a false sense of security. Wireless I can pull a MAC quite literally out of the air. It is pretty easy to spot a router that has a MAC filter by how it responds to association requests. Anyone who can break WiFi encryption won't be fazed by that.
Wired, if I am on your wired network unwanted that is probably the least of your concerns but again I can catch broadcast traffic to get your network information, can tell you have MAC filtering in place by how your router responds, or more exactly doesn't respond, and can clone a legitimate MAC.
To each their own but definitely wirelessly at least it adds a minimal inconvenience. Encryption / real layer 2 port security on a switch that can block ports properly are probably the way to to go.
Edit: 802.1X is a good thing for the paranoid.
Edited by deleted (Fri 27-Dec-13 17:57:25)



Pages in this thread:
Print Thread
deleted