I was going to ask what hardware you were running this on. We have a
rather large list of MAC addresses in our captive portal and it works
fine. Its a dual opteron/4 gigs of ram. Probably overkill, so it
wont help you know what you need, but if your running 128 ram or even
256, its bare bone minimum. Cascadelink 900 1st ave s, suite 201a seattle, wa 98134 p: 206.774.3660 | f: 206.577.5066 ch...@cascadelink.com RB wrote: --------------------------------------------------------------------- To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.orgOn Thu, May 7, 2009 at 15:55, Tim Dressel <tjdres...@gmail.com> wrote:1. What is the limitation on the number of mac-bypass entries? And is what I am seeing expected with 300 entries?I'm sure someone will chime in with the precise ipfw limitation, but this is mostly going to be dependent on your system's performance specs - memory & CPU.2. If I should not be doing this with 300 clients, is anyone using another FOSS product to do MAC authenticated control outbound from their firewall?Possibly, but [as I hope you know] MAC filtering only keeps honest people honest, it is in no way any form of authentication. At that number of unique users, you may be better served by setting up an actual RADIUS server to do proper authentication and AAA instead of manually maintaining tables. --------------------------------------------------------------------- To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org |
- [pfSense Support] Captive Portal Question Tim Dressel
- Re: [pfSense Support] Captive Portal Question RB
- Re: [pfSense Support] Captive Portal Question Chris Flugstad
- Re: [pfSense Support] Captive Portal Question Tim Dressel
- RE: [pfSense Support] Captive Portal Question Dimitri Rodis
- Re: [pfSense Support] Captive Portal Question Tim Dressel