I have two Surf SOHOs for which I would like to disable all LAN access except when I need to configure them. Ideally I would filter the LAN access by MAC address as I am able to do with the WiFi AP, but I see no way to do that.
This thread suggests setting up outgoing and internal firewall rules, but I’m failing to see how I can fashion rules that deny all MAC addresses other than those I want, while also retaining the function of the existing rules.
Why do I need LAN port filtering? Because this is a restricted network, and I need to keep people from just plugging a cable into it, but I cannot just turn off the ports because that’s my only way to configure the router.