Hello,
I have a Fortigate 90D. I have been asked by the management to setup policies to block internet access to specific users.
I successfully managed to do this,however, I recently discovered that the users are bypassing the IPv4 Policy by Mac spoofing.
Kindly assist on this.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
You can create devices on your fortigate with mac's that you want to allow traffic and then create a policy and set the source with attributes all and the mac's you want to allow.
Orestis Nikolaidis
Network Engineer/IT Administrator
I have already done this. Although some of the users keep changing the Mac address of their devices.
Therefore the policy will not be useful once they change the MAC address
You may need to do things outside the realm of the firewall like:
[ul]Also you can try block through your antivirus programs thatdo mac spoofing
Orestis Nikolaidis
Network Engineer/IT Administrator
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1732 | |
1105 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.