Hi... I found all the docs on implementing MAC filters, thanks.

However, either I'm missing an extra step in enabling the MAC filters, or they're not supported in my configuration.
I don't use the WAN port, instead I just have the wireless clients on the same LAN as the wired ones (i.e.,
I have the LAN cable plugged into the row of 4 jacks, not the WAN one).  I can enter
'wlc ifname wl0 maclist "xx:xx:...."', and then 'wlc ifname wl0 macfilter 1' to deny.  But the named MAC address
can continue to access the net.  I've tried up/down via wlc after entering this, but still no luck.

So does anybody else use MAC filtering in this kind of configuration?  Did filtering ever work for you?
I've tried 7.07 and 7.09, with identical results.

Thanks,
Andy Valencia

Ugh... no nibbles at all.  A little more info--this is a WRT54Gv2.2.  Has anybody ever skipped the
WAN port AND gotten MAC filtering to work?  Thanks.  Andy.

I'm not familiar with your platform (I use AR7) but have you considered using ebtables?  I assume there is a Linux bridge device combining the wireless and wired interfaces?

Of course, filtering won't work for traffic between the wired LAN ports unless you break them into VLANs and then bridge them back together in software...

> I assume there is a Linux bridge device combining the wireless and wired interfaces?

Right, default config has the four LAN ports and the wireless interface all bridged together.
MAC filtering is done with the wc/wlc commands, directly on the wireless interface, so I expect
this level of MAC filtering is done in the wireless interface itself.  Which would be great, if
only it worked!