mac address filter

Unanswered Question
Aug 29th, 2007

how to deny specfic mac address to access specfic server on cisco switch 6509 hyprid IOS

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Jagdeep Gambhir Wed, 08/29/2007 - 05:05

Hi ,

From 7.6, port Security has a feature that would do it,

http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/sw_7_6/confg_gd/

sec_port.htm#wp1022694

set cam filter

That will block ANY frame with that source address, that computer won't be able to get

into the network AT ALL. As soon as the switch receives a frame, it always checks it

against the CAM table, it will find that address marked as "filter", so it will discard

the frame.

Regards,

~JG

purohit_810 Wed, 08/29/2007 - 06:37

You can anable port security on that interface.

set port security 2/1 enable

Console> (enable) set port security 2/1 enable 00-90-2b-03-34-08

Port 2/1 port security enabled with 00-90-2b-03-34-08 as the secure mac address

Trunking disabled for Port 2/1 due to Security Mode

Console> (enable)

Where 2/1 is the Server port.

You can see more in detail on below link:

http://www.cisco.com/en/US/docs/switches/lan/catalyst6500/catos/7.x/configuration/guide/sec_port.html

Regards,

Dharmesh Purohit

Actions

This Discussion