Filter access points by MAC address

Similar Messages

• Cisco Aironet 1240 AG Access Point - configure Mac Address using Telnet

  Hi there,
  I’ve got a problem hopefully someone can help me with. I have the above mentioned AP and it is configured, working well and providing wireless access to several laptops on our domain.
  The thing is I can’t get access to the web-based interface to add new laptops Mac addresses to the AP as I currently have them secured with local list Mac address authentication but my user name and password when entered in the web browser login dialog box won’t allow me in although strangely it does allow me to login using the same credentials when I telnet into the AP.
  Does anyone know why I can’t get logged in using the web interface even though the user name and password does appear to be correct as I can telnet in? Also if you have any suggestions how I could sort this without having to perform the password recovery procedure, as I don’t want all the config on the AP wiped and want to avoid having the set the whole thing up again.
  As I workaround if anyone knows what the commands are to allow me to add the Mac addresses of the new laptops so they are added to the local list Mac address authentication list so the new laptops are secured that would be great.
  Thanks in anticipation,
  Tony

  Your AP is probably configured to use the enable secret as the password. Try entering nothing for the username, and enter your enable secret for the password ('Cisco' by default).
  If that doesn't work, post your running-config and we'll be able to see why it's doing that. It's a standard configuration, and no worries because wiping the AP won't be necessary since you can successfully Telnet in.
  Jeff

• Access Connection - Prefer MAC address problem

  Hey
  My specifications:
  Windows Vista
  Access Connection v5.31
  After updating access connection I'm not able to prefer MAC addresses for my profiles anymore.
  Edit profile> Wireless settings> Advanced configuration (settings)>
  Preferred access point MAC address.-
  This box is grayed out and you're not able to write in the box anymore.
  Am I doing something wrong or is this feature just disabled for this version?
  Also I remember having seen an old version being able to prefer 5 MAC addresses for one profile
  Thank you!
  / jerian

  Welcome to the Apple discussions.
  Is the mac address you're using the one you see when you click on the blue apple, about this mac, more info, network, and scroll down to the mac address? Is it possible there's a mixup between the letter O and zero when entering the mac address?

• Photosmart c309a can't find access point to Mac Mavericks OS

  I've owned probably ten HP printers.  I've been thru five of them in five years and I'm beginning to think I need another brand.   I have a 2010 Mac running Mavericks OS, a Netgear 802.11 wireless router, an Apple Air Port and Norton.  I installed the c309a All-in-One printer last year for the first time.  By spring of this year, the scanner function stopped working.  The other day, the printer wouldn't print.  I think the power plug might've come undone but I'm not sure.  I selected a new print queue as I've done in the past and still no connection with the printer.  I made sure connections were secure.  No luck.  I turned the printer off and restarted.  Still nothing.  I ran diagnostics: "Your HP printer cannot find your access point."  The Network Name (SSID) was not found.  I unplugged everything.  I uninstalled the software, I reinstalled the software.  Each time, the installation process would hang up at the configuration stage and the disc would spin and spin.  I tried connecting via USB to my Mac, but that failed too.  I rebooted my AirPort.  I even tried to manually enter the IP address on the AIO keypad.  No success getting the printer to recognize my Mac.  I succeeded at making an ad hoc connection using the wireless radio with hpsetup as the SSID.  The next day, when I needed to print, the hpsetup network option was unavailable and diagnostics told me the wireless radio wasn't working!  Per online forum suggestion, [edited reset instruction by Moderator]  That trick reset my wireless radio but still the c309a is unable to find my access point and I can't print using my 802.11 wireless.  If I can't solve this problem, I will not buy another HP printer.  I hope someone can help.  Thank you for your time.

  Hi @CluelessPackard ,
  I see that you are unable to setup the printer over the wireless network. I would really like to be able to help you resolve this issue.
  Restore the printer defaults.
  Go to Setup, Network, Restore Network Defaults.
  Print the Wireless Network Test.
  Go to Setup, Network, Advanced Setup, Wireless Network Test.
  If it passes, then it isn't a hardware issue with the printer.
  If it passes, setup the Adhoc connection again.
  Click the Airport on the top right corner on the Mac.
  Click on the HP printer from the list. (you won't be on the internet till this procedure is finished)
  Add the printer and try and print to see if the wireless is working properly.
  Check the Configuration Page for the printer's IP address.
  Go to Setup, Network, View Network Settings, Display Wireless Summary.
  If you have a valid IP address for the printer then try and access the Embedded Web Server for the printer.
  Type the IP address into your web browser's address bar. (Safari)
  When setting up the printer, it has to be setup on the main router not the extension.
  Go to the network tab along the top of the EWS.
  Click on Wireless Setup Wizard along the left hand side to begin configuring the printer.
  Apply your settings.
  You have now completed the Wireless configuration.
  Click the Airport on the top right corner on the Mac and select your network name.
  Click on the Apple.
  Click System Preferences, click the Printers and Scanners icon, then click the + sign, then select the printer from the list, make sure the printer listed beside use: shows the proper printer name, click on the add button. You might have to click on the drop down to select your printer.
  Test the printer.
  If you need further assistance, just let me know.
  Have a wonderful day!
  Thank You.
  Please click “Accept as Solution ” if you feel my post solved your issue, it will help others find the solution.
  Click the “Kudos Thumbs Up" on the right to say “Thanks” for helping!
  Gemini02
  I work on behalf of HP

• How do I set timed access for specific mac addresses?

  My daughter tends to stay up late on social media long after we've asked her to go to bed, so I'd like to use the AirPort Utility to just shut off her internet access during set hours. It looks fairly straightforward to set up, however, I don't know how to find her MAC address for her iPod. Can anyone enlighten me?

  iPods, IPhones, and iPads do not have a MAC Address.
  On the iPod home screen, tap Settings
  Scroll down and tap General
  Tap About
  Scroll down to locate the Wi-Fi Address
  Use the WiFi Address of an iPod, iPhone, or iPad in place of the MAC Address when you are setting up rules in Timed Access.

• LRT214 Access Policy using MAC address

  I recent upgraded to the LRT214 from a Cisco RVS4000 On the RVS4000 I used the Access policy to block internet access to certain devices identified by their MAC address during certain times of the day.  This was very helpful for enfocing the time rules for my daughters Xbox to play games using the internet.  That functionality seems to be gone in the LRT214.  I see I can bind a MAC address to a IP and then retrict that IP but that seems cumbersome-- wondering if there is a way to restrict access using ONLY the MAC address?  thanks in advance.

  This is interesting!
  I believe the Linksys device (LRT214) by design does not have the same feature as the Cisco's but basing from what I saw in the LRT's userguide, what you are trying to do can be achieved.
  The LRT has the a Firewall Access Rule feature that allows blocking by creating a "deny" rule via IP where you can specify the time of duration. I think since you are going to bind the ip to a specific mac, it could help.
  I have not tried it myself since I do not have the device at hand. I hope it will be work.

• Blocking wireless access by using Mac Address

  Hello,
  I've got a cisco 1240AG K9 AP plugged into a DSL router. It has a factory config with DHCP enabled and one SSID. This AP is set up for open, unsecure internet access in our dining areas. Problem is, I have office PCs in the vicinity jumping on it to get out throughout the day. Is there a way to put their mac addresses in and block them? I do not want to enable any kind of authentication/security as this is supposed to be open for outside users at lunch.
  Thanks for any help.

  I could do that, but the problem is, this AP is more geared at letting outside clients here on business jump onto the internet. I really don't want to have to get their mac addresses to allow access...I wasn't sure if the mac filtering could work backwards to block traffic instead of allow it.

• Error when accessing a single Access Point

  Dear all,
  Since yesterday I can't access anymore my unprotected Wifi Access Point (receive an error message stating "an error occurred while trying to access selected..." or something equivalent).
  However another PC can connect to the access point, and my macbook can properly connect to a different access point.
  I already completely reset my access point, and I think that the underlying issue may be linked to the fact my macbook has cached the Access Point's mac address.
  Would you have any clue how to reset this cache or even better how to solve this issue ?
  Thanks a lot !
  Laurent

  In the Airport settings in the Network System Preference you can change the "By default, join" option to "Preferred networks". B doing this you will access to all of the networks that have been saved. Just delete any of the ones you need to, apply the change and then you can readd them.

• Wireless MAC Filter more than 80 router are access point required

  We needed router are access points Wireless MAC Filter more than 80 product required.

  Use real wireless security with WPA2/AES and forget about the wireless mac filter.

• Using NAR to restrict access by MAC address

  Hello All,
  We have a solution where home users connect via ATM onto our network. Currenty their radius requests are passed onto Cisco ACS 3.3 and they are authenticated using RSA SecurID Fobs to an ACE server.
  I am trying to look at an alternative to using a SecurID fob and restrict the end user's access based on MAC address.
  I found this on the online documentation for ACS 3.3
  "About Non-IP-based NAR Filters
  A non-IP-based NAR filter (that is, a DNIS/CLI-based NAR filter) is a list of permitted or denied "calling"/"point of access" locations that you can use in restricting a AAA client. However, by entering an IP address in place of the CLI you can use the non-IP-based filter even when the AAA client does not use a Cisco IOS release that supports CLI or DNIS. In another exception to entering a CLI, you can enter a MAC address to permit or deny; for example, when you are using a Cisco Aironet AAA client. The format of what you specify in the CLI box—CLI, IP address, or MAC address—must match the format of what you receive from your AAA client. You can determine this format from your RADIUS Accounting Log."
  If I specify a clients MAC in any of the non IP NAR options (CLI, Port, DNIS)access is refused. I am using radius IETF and the only time I can see the MAC in the radius accounting logs is when I turn on the option to log cisco-av-pair. Nothing is being logged under CLI or DNIS, so I don't think I can restrict access based on MAC using a non IP NAR. Has anyone implemented what is referred to in the documentation above? Is it just applicable to cisco Aironet? Any ideas?
  Thanks.

  A NAR is a definition, which you make in Cisco Secure ACS, of additional conditions that must be met before a user can access the network. Cisco Secure ACS applies these conditions using information from attributes sent by your AAA clients. So it is not device specific.

• Mac address filter

  Is it possible to identify the visitors mac address using PHP
  if yes is there anything to prevent you from limiting access to specific mac addresses (say by using an IF statement to redirect other users to a different site)

  You can identify the IP address, but that doesn't take you down to the level of the individual machine.
  Barry

• Wi-fi MAC address is invalid

  Hi, i have a netgear router and i tried to access the wi-fi. It said that the password was incorrect, yet it was. I tried registering the MAC address into the router, but apparently the address is invalid. My address is F0:B4:79:62:0B:50, is that address valid? and if not, what do i do?
  thx, Connor

  - The MAC address you wrote is of the right format. Since it is unique to each device I can't tell if it is the one for your iPod. Are you sure that the password you entered is correct? Unless you turned it off, the first letter you entered is automatically capitalized. Carefully check each letter as you enter it. Also, some users have turned of Auto-Fill in Settings>Safari to get the password to work.
  - Have you powered off and then back on your router
  - Have you reset network settings:
  Settings>General>Reset Network Settings
  - Reset your iPod
  Press and hold the On/Off Sleep/Wake button and the Home
  button at the same time for at least ten seconds, until the Apple logo appears.
  - The troubleshooting here:
  http://support.apple.com/kb/TS1398
  Entering the iPod's MAC address only helps if the router is set up to filter connections via the Mac address.

• Blocking Client MAC Addresses at Sup720/WLSM?

  I want to block client MAC addresses at the central 6500, where the WLSM is located. Is there any solution like "dot11 association mac-list" at the accesspoints? I tried an "access-expression" on the tunnelinterface, but it did not work. Any suggestions?

  Here is an example of config
  switch(config)# mac access-list extended ARP_Packet
  Switch(config-ext-nacl)# permit host 0000.861f.3745 host 0006.5bd8.8c2f 0x806 0x0
  Switch(config-ext-nacl)# end
  Issue the vlan access-map map_ name command and the action drop command, which is the action to perform.
  The vlan access-map map_ name command uses the MAC access list that you created to block ARP traffic from the hosts.
  Switch(config)# vlan access-map block_arp 10
  Switch (config-access-map)# action drop
  Switch (config-access-map)# match mac address ARP-Packet
  Add an additional line to the same VLAN access map to forward the rest of the traffic.
  Switch(config)# vlan access-map block_arp 20
  Switch (config-access-map)# action forward
  Choose a VLAN access map and apply it to a VLAN interface.
  Issue the VLAN filter vlan_access_map_name vlan-list vlan_number command.
  Switch(config)# vlan filter block_arp vlan-list 2

• "Your Machine MAC Address is Invalid"?

  Hi,
  I need to use a software that is based on Adobe Air but got trouble with my MAC address. So, every time I try to login to the software, it's always failed and "your machine MAC address is invalid".
  There's a question that kept popping up after the installation and it hasn't appeared anymore after I click "Always Allow". Any idea what should I do to get this fixed? Because all other MAC users can use this software well.
  Thanks!

  - The MAC address you wrote is of the right format. Since it is unique to each device I can't tell if it is the one for your iPod. Are you sure that the password you entered is correct? Unless you turned it off, the first letter you entered is automatically capitalized. Carefully check each letter as you enter it. Also, some users have turned of Auto-Fill in Settings>Safari to get the password to work.
  - Have you powered off and then back on your router
  - Have you reset network settings:
  Settings>General>Reset Network Settings
  - Reset your iPod
  Press and hold the On/Off Sleep/Wake button and the Home
  button at the same time for at least ten seconds, until the Apple logo appears.
  - The troubleshooting here:
  http://support.apple.com/kb/TS1398
  Entering the iPod's MAC address only helps if the router is set up to filter connections via the Mac address.

• Allowing only a list of mac addresses to connect to the internet?

  Hi,
  I'm setting up a solution, where access to wireless internet is granted only to a list of mac addresses. It seems MAB security is what I am after. However, before mac address is allowed internet access, I want a user to go through an external and controller-independable registration page.
  Consider this flow:
  Clientconnects to WLAN, since it's mac address is not allowed, the user is redirected to an external website (http://registration.com, aspx website). Here I ask the user to register an account. Using ip address from the request, I send a CLI command to the WLC controller and learn client's mac address from arp table. Here I need to run another CLI command to add the mac address to the mac database, and inform the user they can access the web.
  Few struggles that I'm having now:
  1) How to setup web MAB authentication, that, upon failure, redirects the user to an external website?
  2) How can I add (white-list?) a mac address to enable it access to the internet? 

  It seems I should be able to do this, can anyone elaborate?
  1) Layer-2 set to Mac filtering only
  2) Upon success - user is granted access
  3) Upon failure, falls back to Extrenal Web Auth, which redirects the user to my custom web page
  4) Upon registering, I make a postback to the action_url
  5) User is authenticated? Is there a way to reset authentication sequence at step 4? I don't really want to register the user. During step 4, I'm sending user's mac address back to WLC via SSH. Since mac address will be present on the WLC after step 4, I would like it to just grant access to the mac address, rather than register the user.