Jagdeep Gambhir Wed, 08/29/2007 - 05:05
User Badges:
  • Red, 2250 points or more

Hi ,

From 7.6, port Security has a feature that would do it,


http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/sw_7_6/confg_gd/

sec_port.htm#wp1022694


set cam filter


That will block ANY frame with that source address, that computer won't be able to get

into the network AT ALL. As soon as the switch receives a frame, it always checks it

against the CAM table, it will find that address marked as "filter", so it will discard

the frame.



Regards,

~JG


purohit_810 Wed, 08/29/2007 - 06:37
User Badges:
  • Silver, 250 points or more

You can anable port security on that interface.


set port security 2/1 enable

Console> (enable) set port security 2/1 enable 00-90-2b-03-34-08

Port 2/1 port security enabled with 00-90-2b-03-34-08 as the secure mac address

Trunking disabled for Port 2/1 due to Security Mode

Console> (enable)


Where 2/1 is the Server port.


You can see more in detail on below link:


http://www.cisco.com/en/US/docs/switches/lan/catalyst6500/catos/7.x/configuration/guide/sec_port.html


Regards,

Dharmesh Purohit

Actions

This Discussion