Lock out MAC spoofing (private address) on Wi-Fi network

Question

Level 1

9 points

Lock out MAC spoofing (private address) on Wi-Fi network

I want to put content and time limits on my child's iPhone. I am doing it through my router by firewall rules for the iPhone's MAC address (completely within my domain and control). I know how to turn off Private Address on a Wi-Fi network in iOS. The problem is it creates an error message for the network "Privacy Warning" prompting the iPhone user to turn it back on for that network. How can I lockout Private Address on a particular phone for a particular network, i.e. under passcode? Alternatively, is there a predictable MAC address range for iOS private addresses that I could just block all iOS spoofed address on the Wi-Fi network?

iPhone SE

Posted on Oct 26, 2021 6:17 AM

Reply

Answer 1

Goose66 Author

Level 1

9 points

Oct 26, 2021 6:53 AM in response to KiltedTim

That requires me to go and inventory the MAC addresses for 80+ devices on my Wi-Fi network, and potentially have a completely different Wi-Fi network with different firewall rules to accommodate visiting family and guests. Don't know how that is "more practical" than just blocking one device and/or blocking all spoofed iOS MAC addresses. It may be the only possible solution due to iOS limitations, but it certainly is not more practical.

Reply

Answer 2

KiltedTim

Level 10

224,652 points

Oct 26, 2021 6:26 AM in response to Goose66

It may be more practical to set up MAC address filtering on your router and only allow specific MAC addresses on your network. If they turn on private address, they won't be allowed on the network at all.

Check the documentation for your router.

Reply

Lock out MAC spoofing (private address) on Wi-Fi network

Similar questions