yes the aPPo should be provided with the MAC of the aB. that list is used to specify WHO are allowed to associate with your APPo and the APPo only care about the remote radios mac address and not the mac address of any systems BEHIND the remote radio.
However important to keep in mind is that MAC addresses are easily spoofed and the only really good way to secure your network is to use a pppoe or hotspot server. This way you can do MAC address based on your aPPO then username/password/mac combination on your gateway unit. MikroTik is a good pppoe server that is not extremely hard to get going and works with most radius servers or you can start by using the internal database however you might consider using a radius server that way you can use the radius server for the aPPO as well as for the PPPoE server to allow connections. I have a radius server solution and administration system that I offer for "sale" (I will install it configure it and help you get going with it) if your interested or you can of course do it yourself. If you decide you want a MikroTik unit and do pppoe or just simple mac authentication then well you need not to look any futher then to me as well. I'm a MikroTik OEM solutions provider and I have helped numerous people on this list as well as many other wisps not on this list to improve their performance of their networks as well secure their networks from freeloaders and hackers. Best regards, Eje Gustafsson mailto:[EMAIL PROTECTED] The Family Entertainment Network http://www.fament.com Phone : 620-231-7777 Fax : 620-231-4066 - Your Full Time Professionals - MikroTik OEM - Online Store http://www.fament.net/ -- GS> We're starting to see a number of freeloaders on our network so it is time GS> to tighten security. I'm considering use the Internal Mac Authorization GS> feature to get started. GS> I read the aPPO documentation section on this subject. It is not clear what GS> set of Mac addresses need to be entered into the aPPO. Let's say you enter GS> the Mac addresses of all the client devices on the network (aBOs in our GS> case). This should allow communication between the aPPO and the aBOs. I GS> hope this will also allow communications with the client PCs that are GS> attached to the wired side of the aBOs. Is this in fact the case? GS> I can't imaging using Internal Mac Authorization if you need to specify the GS> Mac address of each PC attached to the wired side of the aBOs. It would GS> really be a hassle keeping the table up-to-date each time a client buys a GS> new PC -or- a guest attaches to a client network while staying overnight. GS> Please help me understand how this feature works in the aPPO. GS> Thanks, Greg GS> ----------ANNOUNCEMENT---------- GS> Don't forget to register for WISPCON IV GS> http://www.wispcon.info/us/wispcon-iv/wispcon-iv.htm GS> The PART-15.ORG smartBridges Discussion List GS> To Join: mailto:[EMAIL PROTECTED] (in the body type subscribe smartBridges <yournickname> GS> To Remove: mailto:[EMAIL PROTECTED] (in the body type unsubscribe smartBridges) GS> Archives: http://archives.part-15.org -- [This E-mail scanned for viruses by Declude Virus] ----------ANNOUNCEMENT---------- Don't forget to register for WISPCON IV http://www.wispcon.info/us/wispcon-iv/wispcon-iv.htm The PART-15.ORG smartBridges Discussion List To Join: mailto:[EMAIL PROTECTED] (in the body type subscribe smartBridges <yournickname> To Remove: mailto:[EMAIL PROTECTED] (in the body type unsubscribe smartBridges) Archives: http://archives.part-15.org
