At our office we have a router on the table, and the powers that be want to lock

Question

At our office we have a router on the table, and the powers that be want to lock it down by MAC address to stop people from plugging in cables for other computers i.e. intruders.

Given that resetting the router to factory settings to bypass the password will wipe out all the configuration (it has to be manually entered static IP & DNS settings) it will prevent unauthorised use of the internet with it. Our live server can only be accessed from this IP which is the reason for the security.

Are there any inherent flaws in doing this from a security perspective?

Explanation / Answer

In answer to 'is there any security in locking down by MAC address', yes there is, but it is limited to accidental misconnection of equipment and simple attempts at deliberate unauthorised access.

Provided the router is physically secured (as already mentioned in Daedalus Mythos's answer), MAC lockdown will help to provide defence in depth. I suspect that the following will not apply to your setup but nonetheless, if logging has been configured to identify connection of unauthorised devices, there is likely to be evidence of someone attempting to bypass the MAC controls, which could enable investigation prior to an actual compromise occurring (in this scenario it is a detective control rather than preventative control).

Related Questions

Navigate

• Browse (All)
• Browse A
• Subjects

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.