I have a core switch Cisco 3560G and configured vlans on it 2-11..
Linksys switches are connected with Vlans and users are connected via linksys switches,
I applied an ACL in the Router to give Internet access to only selected users,
other users are getting IPs dynamically via DHCP configured on the switch..
Users having Internet Access are configured with Static IPs..
Some users are trying to enter the permitted IP address and using Internet,
I want to bind permitted IP with the MAC address of User PC on the core switch..
to do so,,i found a configuration on cisco website but,, its not working,
Switch# configure terminal
Switch(config)# interface gigabitethernet0/23
Switch(config-if)# ip verify source port-security
Switch(config)# ip source binding 0013.2074.144c vlan 10 192.168.10.5 interface
The author also wrote:
When IP source guard with source IP and MAC address filtering is enabled, DHCP snooping and port security must be enabled on the interface.
when I enable port security using
(config-if)# switchport port-security
it disables the interface,, when i shut the interface and no shut the interface,, it starts in amber then off...
DHCP snooping option is not available in vlan 10 interface
(config)#int vlan 10
(config-if)# ?????? dhcp snooping is not available.....