Forum Discussion

Nimbostratus

Dec 22, 2010

Restrict by source MAC address?

Is it possible to restrict by source MAC address? I have some iRules now that restrict by source IP, which are fine for our internal apps. We're discussing locking down an external site to certain p...

Cirrostratus

Dec 27, 2010

Hi Ned,

Getting the MAC address from a client depends on Javascript retrieving the address and inserting it into an HTTP header in requests. A client could easily modify this value to anything they want using simple browser addons. So from a security perspective this would be a bad idea to use for access control.

You could potentially use an iRule or for more functionality, APM, to perform the authentication against a remote auth database. If there are three applications which require auth, you could use an iRule or APM to reduce this to one login.

Aaron

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Restrict by source MAC address?

Recent Discussions

self-directed requests fail because of no certificate

Decode ObjectSID from Base64-encode string

iRule - Url rewrite and header replace and pool selection not working

ip x-forwarding

F5 ASM API-Protection Policy

Related Content

Restricting Access to Virtual from client IP address in X-Forwarder-For HTTP header

Office 365 Tenant Restrictions

SSL Orchestrator Advanced Use Cases: Enabling GCloud Organization Restrictions

CSV to Address External Datagroup File

F5 XC vk8s workload with Open Source Nginx

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS