Blocking internal device via mac address on ASA 5505

Unanswered Question
Aug 28th, 2008

I have a remote site which has low grade switches so i am unable to block devices at the switch level. Is there anything i can do on the ASA 5505 to block a specific mac address from using the internet connection. It's an unknown device connecting to our network and i would like to block it.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Syed Iftekhar Ahmed Thu, 08/28/2008 - 09:46

You cannot use MAC address in ACLs.

You can try to create a static arp entry on ASA with an fictitious ip for that particular MAC and use ACL to block that IP.


This Discussion