MAC address filtering not working as expected

Hello !
I’ve set a radmin server on one of my boxes (port 4899) and i forward that port to that box. Now, if i set the rule for my radmin server to only accept certain MAC addresses, it only works if :

  • MAC address is not a wireless address
  • Connection from local ip address only

How can i solve this ?

MAC address filtering only works at the Layer2/Local Network. So if your trying to filter a 'remote (read routed) host by MAC it’s not going to work cause that’s impossible.

If you enter your network from the internet the Layer2 address that ‘talks’ to your radmin server will be the one of the Router with a Layer3 header containing the external IP.
So in that case you need to use a IP or better TCP rule to filter those on IP/range etc.