我在配置 mac 过滤时遇到问题。我不使用 DHCP,但我试图找出一种在端口上设置 mac 地址并创建规则来阻止该特定 mac 地址的方法。因此,当我尝试将流量发送到该端口时,我无法发送。有什么想法吗?
MAC地址过滤 Fortinet v6.0
网络工程
MAC地址
加强
堡垒
2021-07-12 14:05:35
1个回答
我假设您正在使用 Fortigate 防火墙。您可以使用以下代码进行工作
config firewall ipmacbinding setting
set bindthroughfw {enable | disable} - this is enabling IPMAC binding to get through a Firewall.
set bindtofw {enable | disable} - this will check an IP MAC binding combination to allow access TO the firewall
set undefinedhost {allow | block} - this defines how the Firewall will treat traffic that has not been bound
end
config firewall ipmacbinding table
edit <index_int> - the number in the IP/MAC binding table
set ip <address_ipv4> - IP address value
set mac <address_hex> - MAC address value
set name <name_str> - the name which may be used for this binding
set status {enable | disable} - is the binding now enabled
end
config system interface
edit <interface name>
set ipmac {enable | disable } - enable to enable mac binding on interface
next
end
除此之外,如果你想配置 MAC 地址控制,你可以使用下面由 fortinate 发布的文章