[Question] Protecting outdoor LAN port from infiltration?

posted 2 months ago

networking@sh.itjust.works

If you have an outdoor Ethernet port—in my case with a WiFi AP connected—how can you go about protecting your network from somebody jacking in?

Is there a way to bind that port to only an approved device? I figured a firewall rule to only allow traffic to and from the WiFi AP IP address, but would that also prevent traffic from reaching any wireless clients connected to the AP?

Edit: For more context, my router is a Ubiquiti UDM and the AP is also Unifi AP

Sort:

Hot Top Controversial New Old

You are viewing a single thread.

View all comments

[ - ]

Kadath (she/her)@lemmy.world

12 points

2 months ago

MAC filtering, but if the MAC address is visible from the outside AP it’s pretty much useless. Radius would help.

permalink

report

[ - ]

brownmustardminion@lemmy.mlOP

5 points

2 months ago

Yeah since the unit is easily accessible I imagine they could just read the MAC address off the sticker and spoof it.

permalink

report

parent

networking

!networking@sh.itjust.works

Create post

Community for discussing enterprise networks and the ensuing chaos that comes after inheriting or building one.

Community stats

61
Monthly active users
119
Posts
637
Comments

Community moderators

manifex@sh.itjust.works