Simple MAC access control question on 5508

Similar Messages

• Where's iPhone's ID for MAC Access Control on Airport Express?

  I'm running Apple Express (NOT Extreme) base station v5.5.1, & require Access Control on 802.11g network. I have "Apple IDs" for all our computers using network, but I can't figure how to get ID #s for iPhone. As workaround, I temporarily opened my network to standard 128-WEP encrypt w/ password, disabling Access Control. But some hash-chart wizard in my apt complex keeps beating WEP & bogging down network, no matter how many times I change passwords. Note: I can't set up WPA w/o Airport Extreme, so that's not an option.
  Thanks in advance for any suggestions...

  Hello sportshark1. Welcome to the Apple Discussions!
  To find the iPhone's MAC address: Settings > General > About

• How to control internet sharing via MAC access control list?

  Hello,
  I know how to share the internet over the Wi-Fi. I know that there could be a password. But I need to control users by MAC addresses, just like in the routers. So, I want to give an access ONLY to a several MAC addresses which I'll write in some ?list?. But the main point is that the other computers, which are not included in that list, can't access my network.
  I figured out that it is nearly impossible to do via standard utilities in mac os, so is there any 3rd party software for such things?
  Thank you very much for your help!

  {quote:title=Matthew Morgan wrote:}
  You need to set this up with whatever your using as your wireless router.
  Yes, and I'm trying to figure out how to do it

• Simple SSH Access-List Question

  I am enabling SSH access for all of our Cisco devices and want to restrict access to just the following ip addresses: 192.168.200.1-192.168.200.50.  I forgot the exact access-list configuration to accomplish this.  The subnet is /24 and I don't want the whole subnet - just .1 - .50.
  Thank you,
  Thomas Reiling

  Hi there,
  If using ssh make sure you have a domain name, host name and a generated rsa key.  Assuing you've done that, the the following ACL and line vty command will do the trick.  Note that the 1-50 host list is not on a subnet barrier.
  To get it exactly
  access-list 1 remark ALLOW MANAGEMENT
  access-list 1 permit 192.168.200.0 0.0.0.31
  access-list 1 permit 192.168.200.32 0.0.0.15
  access-list 1 permit 192.168.200.48 0.0.0.1
  access-list 1 host 192.168.200.50
  access-list 1 deny any log
  It would be a good idea to put it on a boundary though, so the following would be much more simpler and easier to read.
  access-list 1 remark ALLOW MANAGEMENT
  access-list 1 permit 192.168.200.0 0.0.0.63
  access-list 1 deny   any log
  Apply the access-class on the vty lines and depending on authentication, i'd put something there too.
  line vty 0 4
  access-class 1 in
  transport input ssh
  password blahblah
  That ought to do it.
  good luck!
  Brad

• What is better for security?  WPA2 or Access control

  I have a Airport express and 2 computers; a Mac and a PC.
  When it come to securing your wi-fi connection so you don't get unauthorized clients on your network.
  What is better
  A- Just using encryption like WPA2 or some other password based system or
  B- Just entering the "Airport ID" (MAC) of the computers I want to authorize in my network on the Access control panel.
  Seems to me like the later is easier on the clients since they don't need a password or anything, It's completely transparent for the client. And I believe encryption slows down the connection a bit and create overhead for the computer. But maybe I don't have the full picture of the situation.
  Is there anybody who can illuminated this subject for me?
  thanks
  PowerBookG4 Mac OS X (10.3.9)

  WPA2 is virtually uncrackable only really vulnerable if you use a real word as a password.
  When using access control, MAC addresses are sent unecrypted can be read and spoofed and therefore do not add any security.
  Unfortunately "Closed" networks, MAC access control lists, and reduction in transmission power are all more "feel good" security rather than real security. All these various approaches are dated and mistakenly lead to overconfidence.
  WPA is your friend if you value wireless security.

• Where can I find iPhone "Apple ID" # for Access Control on Airport Express?

  I'm running Apple Express (NOT Extreme) base station v5.5.1, & require Access Control on 802.11g network. I have "Apple IDs" for all our computers using network, but I can't figure how to get ID #s for iPhone. As workaround, I temporarily opened my network to standard 128-WEP encrypt w/ password, disabling Access Control. But some hash-chart wizard in my apt complex keeps beating WEP & bogging down network, no matter how many times I change passwords. Note: I can't set up WPA w/o Airport Extreme, so that's not an option.
  Thanks in advance for any suggestions...

  Yeah, this kinda had me going as well...at first I couldn't figure out where in the world was the MAC address for this iPhone! I check the iPhone, the box, online everything everywhere! I just happened to be in the Settings and went to About this iPhone...and Blam! there it was!!! Be sure and use the ID for WiFi. MAC Access Control is a great safeguard, though many say people can "spoof" MAC IDs. I haven't seen it and am not sure how it would be done.

• [SOLVED] Setting up Mandatory Access Control (MAC)

  Hi,
  I know it's not the Arch way to ask for instructions but I am very new to Arch and I don't want to screw up the kernel.
  From the wiki, I read that Arch has removed Apparmor as well as TOMOYO. I have googled high and low, but I cannot understand why this isn't a security hole. Arch only seems to be using Discretionary Access Control (DAC).
  I looked up both Apparmor and TOMOYO in the wiki, but all the instructions pertain to kernels < 3.16, which I'm using.
  Linux sim74stic 3.16.3-1-ARCH #1 SMP PREEMPT Wed Sep 17 21:54:13 CEST 2014 x86_64 GNU/Linux
  The only options are to either build a custom kernel, which gets complicated for me as I would need to take care of NVIDIA drivers (I have laptop, hence I need to configure with Bumblebee), or to use linux-lts kernel, which is old.
  Can anyone tell me if not using MAC is a security loophole, or point me in the right direction on how to install one if it is?
  Last edited by prakharsingh95 (2014-10-06 21:27:49)

  prakharsingh95 wrote:Can you elaborate on whether MAC is really needed
  It's a really tough one as to whether MAC is really needed or not, and it's not something I really know that well
  prakharsingh95 wrote:or is Arch secure enough (regular desktop usage) without it? If I can get away without it, I would rather stay away and enjoy my Arch installation, but I don't want to leave my PC unsecured either.
  Any operating system is secure for regular day-to-day use, as long as you're careful (firewall, not clicking unknown links without research first etc). This includes Windows.
  For both of your above questions, it depends on what your environment you're in. Because I'm surrounded by Ethical Hackers as part of what I do, I should really switch over to a hardened kernel, but I will also have to go to the trouble of configuring the user-space tools for it to be useful. That last sentence is important, because if you have SELinux compiled in, but not configured, you might as well not have it there.
  prakharsingh95 wrote: Do I simply install this (linux-pax) from the AUR and it will automatically patch my kernel keeping my current modules or should I (can I?) modify the PKGBUILD for NVIDIA, Xorg and additionally add Apparmor?
  Whilst the PKGBUILDs for linux-pax and linux from [core] look similar, they produce different packages with different results. As a result, you'll have to compile the nVidia modules for it. That's true for any (patched) kernel, be it CK, BFS, PaX, CK-PaX, TRESOR, etc.
  If you're not up to writing your the modules, there's the nvidia-dkms package, which should be able to compile the nVidia modules for your system.
  prakharsingh95 wrote:If it's that simple, can I simply get linux-selinux from the AUR and it will get me up and running with 3.14 + my modules + SELinux?
  On paper, it is that simple, as long as you know how to build the modules you need. I'd use nvidia-dkms, but it's up to you on how you do this.
  This is an example guide outlining the steps you could take to installing linux-selinux.
  Last edited by clfarron4 (2014-10-06 13:42:43)

• I cant access control on syncing iphone with mac air to get contact via outlook to change on phone

  I cant access control on syncing iphone with mac air to get contacts via outlook to change on phone. Worked fine on old itunes.

  Hi Steve, Thanks for that. When I conect the phone it comes up with iphoto and starts to sync and then when that is finnished the itunes window shows my phone syncing at the top of the screen. The only button that says iphone which is on top right only asks if I want to eject and then disapears when sync finnishes. I can not see any other way of showing a side bar view and i can not access any way of controling the sycn service. It seems to be syncing calander but not my contacts. Have I missed something?

• MAC address access control default?

  I'm still using old graphite ABS, and all of them
  are using MAC address access control.
  Just by accident I connected a PB G4 with an
  internal extreme Airport card.
  The MAC address of this AirPort card wasn't in the
  access list of the ABS.
  It looks like ABS does only limit access through
  MAC addresses for 802.11b cards. I'll spend some time
  to double check this behaviour.
  Did anyone already see this default of access
  control?

  I'm pretty well aware of the limitations of any kind of
  MAC address control: in an hostile environment its a
  "straw house" or an "empty extinguisher".
  But in a collaborative and friendly environment I thought
  it may be a useful "frontier marker" between "friendly" and
  clearly "hostile" behaviors.
  This belief was foolish.

• After time capsule 7.6 Firmware upgrade I can't set up Access Control / Timed Access using mac adresses.

  After time capsule 7.6 Firmware upgrade I can't set up Access Control / Timed Access using mac adresses.
  I have a Time Capsule and an Airport express and when I change access control parameters on whatever one of those
  two devices through Airport Utility its duplicating the same setup on the other device !
  What a mess !
  I had to choose "Not Enabled" in the Access Control stup window.
  Has anyone experienced same problem ?
  Jean.

  I did downgraded firmware to 7.5.2 ...
  and the Acess Control Setting from Airport Utility is back to normal behaviour.
  Jean.

• MAC address and router access control

  My iPhone 3GS can only access the network (through my Netgear KWGR614 wireless router) when the router's MAC address access control is off. When I turn it on the phone is blocked. The MAC address I use is taken from the iPhone settings. It begins with 64. All other MAC addresses I have ever seen begins with 00. Is this MAC address correct? If it is right, could it be that the router can't handle this address?

  The first 3 bytes of the mac address identifies the manufacturer. For example, mine starts with 04:1e:64 which is Apple
  04-1E-64 (hex) Apple, Inc
  041E64 (base 16) Apple, Inc
  1 Infinite Loop
  Cupertino CA 95014
  UNITED STATES
  . if it starts with 64 then it belongs to
  64-4F-74 (hex) LENUS Co., Ltd.
  644F74 (base 16) LENUS Co., Ltd.
  18-5 Gwacheon-Dong
  Gwacheon Gyeonggi-Do 427-060
  KOREA, REPUBLIC OF
  check this list : http://standards.ieee.org/regauth/oui/index.shtml
  enter your first 3 numbers (first 3 pairs) from your wifi (settings/general/about) (don't use colons in the search)
  Not sure about the router as I never tried mac filtering. Each router will behave differently.
  Hope this helps.

• Display MAC (media access control) address of connected access point.

  Hi all! Sorry if this is already posted somewhere but I tried searching and was having difficulty because of the word MAC having multiple meanings here.
  Anyways I want to be able to view the MAC (media access control) address of the access point I am connected to. Is this possible? I can't find it in System Preferences. Is there a terminal command that would allow me to see it? Any help would be MUCH appreciated. Thanks!

  I'm looking at it right now. In the top portion, next to the active graph, it has the SSID of my access point. In the table beneath that, my access point is the first on the list, and the MAC address is clearly visible.
  Second if I click on my access point in the list, the MAC address appears, temporarily at the bottom of the window.
  For comparison, in the iStumbler preferences, on the AirPort tab, I have only "Auto-Select Best Network" & "Keep on Top" selected.

• Require MAC (Media Access Control) address for my ...

  Hi
  I recently bought the Nokia C6.
  I want to connect to my WiFi network in my office.
  My network administrator require the MAC (Media Access Control) address of my set to give me access to the network.
  How can I find this address for my set?
  Solved!
  Go to Solution.

  On home screen:
  Open the number keypad (button in the middle in bottom row) and then dial *#62209526# (equals *#MAC0WLAN#) => Device will show your WLAN MAC address.

• MAC address access control

  Why does my airport express/time capsule show more wireless clients than I've authorized via the MAC address access control?

  Sorry, but I have to re-awaken this old thread.
  1. I recently purchased a new iPad.
  2. With a) a hidden SSID, b) a MAC address-based access control list and c) a WPA2 secured network, I am assuming that no new device should be able to access my WiFi network.
  3. When I got home with the new iPad on Friday evening, and started it, it was online without even asking me whether to connect, or what the WPA2 key was.
  I find this strange.
  Additional information:
  4. I also have an iPhone 4S.
  5. I used the personal hotspot feature of the iPhone 4S to connect the WiFi-only iPad to the Internet while on the road.
  6. That personal hotspot feature was still enabled when I got home with the iPhone and the new iPad.
  7. Home network setup:
  7a) Fritz.Box 7270 as DSL modem/router (WiFi disabled)
  7b) Apple Airport Extreme (v 7.6.4) connected via LAN to DSL router, (in bridge mode, create wireless network), Access control on this base station.
  7c) Apple Airport Express (v 7.6.4) connecte to Airport Extreme via WiFi (extend wireless network), Access control not an option on this base station.
  8. Native IPv6 enabled on all devices (and provided by ISP).
  Any suggestion and help is highly appreciated.

• Time Capsule Access Control and Extended Network Question

  I have a Time Capsule where I have set up a wireless network access list…and extended the network using an Airport Express unit. The Airport Express unit also has settings for an Access Control list. Do these need to be the same as the those for the network from TC that it is extending…or does that happen automatically…and if not what on earth are they for?
  Thanks for any help…this doesn't seem clear from what I've read/seen.
  James

  I have a Time Capsule where I have set up a wireless network access list…and extended the network using an Airport Express unit. The Airport Express unit also has settings for an Access Control list. Do these need to be the same as the those for the network from TC that it is extending…or does that happen automatically…and if not what on earth are they for?
  Unfortunately, they are not automatically applied to each base station in an extended network. You would have to manually enter the exact same list in each base station.