I have a Fortigate 90D. I have been asked by the management to setup policies to block internet access to specific users.
I successfully managed to do this,however, I recently discovered that the users are bypassing the IPv4 Policy by Mac spoofing.
Kindly assist on this.
You can create devices on your fortigate with mac's that you want to allow traffic and then create a policy and set the source with attributes all and the mac's you want to allow.
Network Engineer/IT Administrator
I have already done this. Although some of the users keep changing the Mac address of their devices.
Therefore the policy will not be useful once they change the MAC address
You may need to do things outside the realm of the firewall like:
Also you can try block through your antivirus programs thatdo mac spoofing
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2023 Fortinet, Inc. All Rights Reserved.