In this video, you will learn how to add device definitions to your Forte gate, using media access control addresses or Mac addresses.
Thes definitions. Formal white list that allow you to control the devices that can access your wireless network.
Each network device has a unique Mac address added by the manufacturer. This makes them a handy way to identify a device and in this example will identify an iPhone
Mac address. Identification also allows you to assign a reserved I p for exclusive use of a device when it connects to the wireless network,
even though Mac address filtering isn't foolproof. To get around this configuration, a malicious hacker would have to guess an address on your Mac White list.
First, you will identify the unique Mac address of a device on your network
for Windows devices. Open the command prompt and type I p. Config. Slash All
this output shows the configuration information for all the network connections.
Look for information about the wireless adapter and note the physical address
for Mac OS X device is open, terminal and type the following.
Make sure to note the Mac address
and take note of the WiFi actress
for android devices,
and take note of the WiFi Mac address.
Next, go to user and device
device device definitions and create a new device definition for an iPhone
set alias to iPhone.
Set Mac address to the physical address of the device and set the device type toe iPhone.
The new definitions will now appear in your device. Lis.
If device identification is enabled on the wireless interface device definitions will be created automatically.
Then you can use MAC addresses to identify which device a definition refers to.
Now go to user and device
device device groups and create a new group
named the Group WiFi Access and add the new device as a group member.
interfaces and edit the wireless interface.
If the 48 p is in bridge mode, you will need to edit the internal interface
under D H C P Server. Go to advanced options.
Create a new entry in the Mac reservation and access control list.
Make sure you reserve an I P address within the D H. CP range of the device is Mac address.
Go to Policy and objects
policy. I pee before and create a new policy
set. Incoming interface to your wireless interface
source device to the device Group,
an outgoing interface to the Internet Facing interface.
Make sure that Nat is turned on
to check your results. Connect to the wireless network with a device that is a member of the device group.
You should be able to connect to the WiFi and browse the Internet.
Connection attempts from a device that is not part of the group will fail.
and select now to view the current results.
Filter the results using the reserve source i p. And verify that it is being used exclusively by the wireless device.
Thank you for watching. If you need further details, you can visit docks dot fort net dot com to access our complete documentation library.
Also check out her new cookbooks, ate at cookbook dot Fortinet dot com.