If the client wants to send a packet to the server, it first checks whether the server is in the same subnet. To understand why, you must know a thing or two about how the internet works.Ĭommunication between devices is commonly done via the Ethernet protocol (wiki), and despite the source and destination being identified by IP, actual communication is done per MAC. In short, the answer is no, you usually can't block based on MAC address.
