Hi Merlin,
Is the limit of 32 MACs in the filtering list still in place? I've been trying without success to add 51 MACs to the filter and the router appears to go into a reboot loop that is only fixed by resetting the router.
We need support for ~150 MACs and I developed a little script to set the NVRAM paramts. On a side note what is the difference with the _x params - are they there just for the list on the web-page to associate the descriptions?
nvram set wl_maclist=AA:BB:CCD:EE:FF AB:AB:AB:AB:AB:AB
nvram set wl0_maclist=AA:BB:CCD:EE:FF AB:AB:AB:AB:AB:AB
nvram set wl1_maclist=AA:BB:CCD:EE:FF AB:AB:AB:AB:AB:AB
nvram set wl_maclist_x=MAC in greater than less than brackets then desc
nvram set wl0_maclist_x=MAC in greater than less than brackets then desc
nvram set wl1_maclist_x=MAC in greater than less than brackets then desc
Thanks,
Thanks Merlin. I really like your build and hope a solution with more MACs in the wifi filtering is possible as it is easy for our less technically minded staff to administer. But worst case I'll switch to Tomato as there are people reporting being able to use 500+.
The other idea I've seen is from the 5th post on here:
http://tomatousb.org/forum/t-308906/
Do you think that might work?
Thanks!
Hi Merlin,
I noticed that newer version now support 128 MAC addresses for WAN filtering.
Today I tried to filter based on ~70 devices and I found that for the first ~20-30 devices the filter work as expected, but after that devices were not able to connect.
Tomorrow I will experiment further and find the exact cut-off.
RTN66U v374.41 (will update tomorrow too).
Any thoughts or ideas on how to debug this? I can sent a copy of how the nvram variables are set, or from iptables.
Thanks again,
Owen
Hi again,
I was confused/didn't remember correctly. I see from your post earlier in this thread that the UI now supports 128 but there may have been some issue above 64 and possibly when above 35.
Here are some more details.
We have 61 MAC addresses on 2.4Ghz radio and the same 61 MAC addresses on the 5.0Ghz one. So in my mind this is below the limit.
I've used a google docs script to set the following NVRAM params, and then I go into the UI and turn off then on the MAC filtering to push through whatever changes are needed under the hood. The reason I use the script to set the NVRAM params is so that I can manage the list of users in a google docs spreadsheet. I arrived at these params by adding and removing different MAC addresses and seeing what NVRAM params were getting set. I might be missing something, and I don't know what the purpose of them all are
nvram set wl_maclist="00:00:00:00:00:01 00:00:00:00:00:02"
nvram set wl0_maclist="00:00:00:00:00:01 00:00:00:00:00:02"
nvram set wl1_maclist="00:00:00:00:00:01 00:00:00:00:00:02"
nvram set wl_maclist_x="<00:00:00:00:00:01>usr-1<00:00:00:00:00:02>usr-2"
nvram set wl0_maclist_x="<00:00:00:00:00:01>usr-1<00:00:00:00:00:02>usr-2"
nvram set wl1_maclist_x="<00:00:00:00:00:01>usr-1<00:00:00:00:00:02>usr-2"
nvram commit
I suppose the alternative is to try and get FreeRadius running on the router. Are you aware of anyone who has achieved this?
Thanks,
Opie
nvram set wl0_maclist - 1081 characters
nvram set wl0_maclist_x - 1257 characters
Fantastic. I will give it a try with the next release.
If I kept the label names really short, would it support more than 64 MACs or is there something else in the chain that would breakdown?
Hi Merlin,
I tried the 374.43 build last night and found that a larger # of MACs to filter by still appear limited to the ~1000 character limit.
Can you tell me the format iptables command that the web-server is running to establish the MAC based filtering.
I ran 'iptables --list' but couldn't find an associated chain when I had the MAC filtering enabled for either of the radios.
My idea is to build a script that parses a text file of MAC addresses and then call the appropriate iptables command. And then have this run automatically on boot-up.
Perhaps there is another way?
Thanks,
Owen
Welcome To SNBForums
SNBForums is a community for anyone who wants to learn about or discuss the latest in wireless routers, network storage and the ins and outs of building and maintaining a small network.
If you'd like to post a question, simply register and have at it!
While you're at it, please check out SmallNetBuilder for product reviews and our famous Router Charts, Ranker and plenty more!