You can configure the MAC access control lists to allow or deny wireless client connections based on the MAC addresses of the client devices. You can configure a list of denied and allowed MAC addresses in the Gateway Wireless Controller. Then, you can configure each SSID to use one of these lists to control wireless client access to your network.
The maximum number of denied and allowed MAC addresses is 256. We recommend that you limit the total number of denied and allowed MAC addresses to 50 addresses to avoid performance issues.
There are two types of MAC access control lists:
Denied MAC Addresses
To make sure certain wireless clients cannot connect to your AP device, you can add the MAC addresses of those wireless clients to the Denied MAC Addresses list. If you configure an SSID to use the Denied MAC Addresses list, any wireless clients with MAC addresses that are on this list are not allowed to connect to that SSID.
Allowed MAC Addresses
To enable certain wireless clients to connect to your AP device, you can add the MAC addresses those wireless clients to the Allowed MAC Addresses list. If you configure an SSID to use the Allowed MAC Addresses list, only wireless clients with MAC addresses that are on this list can connect to that SSID.
To configure the denied and allowed MAC address lists:
To add denied MAC addresses:
To add allowed MAC addresses:
To delete a MAC address from either list, select the MAC address and click Remove.
To configure an SSID to deny access based on the MAC Access Control settings, you must enable MAC Access Control in the SSID settings.
From the Gateway Wireless Controller:
After you enable MAC Access Control for an SSID, the AP device uses the selected MAC Access Control list to determine whether to allow wireless clients to connect to that SSID.
Configure WatchGuard AP Device SSIDs
Configure Gateway Wireless Controller Settings