this post was submitted on 24 Jul 2024
11 points (92.3% liked)

networking

2811 readers
1 users here now

Community for discussing enterprise networks and the ensuing chaos that comes after inheriting or building one.

founded 1 year ago
MODERATORS
manifex@sh.itjust.works
11
[Question] Protecting outdoor LAN port from infiltration? (lemmy.ml)
submitted 3 months ago* (last edited 3 months ago) by brownmustardminion@lemmy.ml to c/networking@sh.itjust.works
12 comments fedilink hide all child comments
 

If you have an outdoor Ethernet port—in my case with a WiFi AP connected—how can you go about protecting your network from somebody jacking in?

Is there a way to bind that port to only an approved device? I figured a firewall rule to only allow traffic to and from the WiFi AP IP address, but would that also prevent traffic from reaching any wireless clients connected to the AP?

Edit: For more context, my router is a Ubiquiti UDM and the AP is also Unifi AP

you are viewing a single comment's thread
view the rest of the comments
[–] Thade780@lemmy.world 12 points 3 months ago (1 children)

MAC filtering, but if the MAC address is visible from the outside AP it's pretty much useless. Radius would help.

[–] brownmustardminion@lemmy.ml 5 points 3 months ago

Yeah since the unit is easily accessible I imagine they could just read the MAC address off the sticker and spoof it.