Blocking internal device via mac address on ASA 5505

Unanswered Question
Aug 28th, 2008
User Badges:

I have a remote site which has low grade switches so i am unable to block devices at the switch level. Is there anything i can do on the ASA 5505 to block a specific mac address from using the internet connection. It's an unknown device connecting to our network and i would like to block it.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Syed Iftekhar Ahmed Thu, 08/28/2008 - 09:46
User Badges:
  • Blue, 1500 points or more

You cannot use MAC address in ACLs.

You can try to create a static arp entry on ASA with an fictitious ip for that particular MAC and use ACL to block that IP.


This Discussion