Parental control based on MAC addresses (AdvancedTomato on R7000)

Comments

5 comments

  • Avatar
    defconphil

    ?

    0
    Comment actions Permalink
  • Avatar
    hal10000

    I use an ASUS RT-AC66U router.  This router has a build in interface that allows you to configure, by MAC address, which devices can have internet access and when.   Very useful if you want to shut down internet access for certain devices but not others. 

    0
    Comment actions Permalink
  • Avatar
    mattwilson9090

    @hal10000

    Security and filtering based upon MAC address is nearly worthless since anyone with administrator or root access can change the MAC address on the device with a minimal amount of effort and skill.

    0
    Comment actions Permalink
  • Avatar
    hal10000

    @mattwilson9090

    Hi Matt,

    Anyone with the right privileges and know-how (both are required) can get around any filtering/security. Still, I would respectfully disagree with your blanket statement for the following reasons.

    It all depends on what you are trying to secure and from whom. 

    1. As you said, "anyone with admin or root can change the MAC address.   In many cases, users (the average office worker) won't have admin or root access, and even fewer have the know-how to make such changes, so filtering via MAC can be quite effective.   The average office worker has no idea what a MAC address is, let alone how to change it. Someone in IT or software development... that's another story. 

    2. The original post was about parental controls.  In a home environment, MAC address filtering is very effective because the number of the family members with the right access and know-how is usually a small number, thus the person trying to circumvent the system can be readily identified.  :-) 

    MAC address filtering is certainly not a highly secure way of protecting data or restricting access, but, as part of a strategy, it does have its uses in certain cases. 

    0
    Comment actions Permalink
  • Avatar
    catmanexc

    Hi favoninus1,

    I followed your instruction to use Administration, Scripts > Firewall but for some reason is not working. Am I missing a step? Something is not enabled?

    I reboot the router still no luck.

    O the other hand if I use Tools, Execute System Commands "Paste" and click on "Execute" works like a charm..... the only problem I lose everything when I restart the router.

    Same as, you a concerned parent.

    Please answer when you have a chance.

    Thank you.

    0
    Comment actions Permalink

Please sign in to leave a comment.