Hi all, I am trying to learn network security to stop a user on my wifi who is not obeying the rules (streaming only no other users) I implemented open dns and have used my routers limited mac functionality to prevent others from gaining access and have set up static ips with only a certain number of ips needed to allow all devices to connect, the open dns certainly has stopped them accessing sites like a charm however it was this that tipped me off to the fact somebody else is using the network and and the only way possible to my limited knowledge would be for this person to pass his mac address on for someone to clone. I have done some research 802.1x certifcates radius server etc and decided I can get a managed switch with port security. but here is where I am a little confused, the switch will be configured to run one port to a access point how do I configure the switch to only allow one mac or multiple without clones from the AP and not shutdown the port if a cloning attempt occurs? probaly a very noob question this, any help or a pointer in th right irection would be appreciated .
ps. I fear the will soon start using a vpn to bypass dns blocking, can a protect li firewall/router and pfsense prevent this?
ps. I fear the will soon start using a vpn to bypass dns blocking, can a protect li firewall/router and pfsense prevent this?