Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Webcast-Catalyst9k
New Member

IP access restriction in 3560

Hi everybody,

I am configuring 3560 switch. I have the basic requirement. I want to configure a swithc port fa 0/0 to allow only the IP address 192.168.1.1 for example and deny any other PCs with IP address other than this.

I want to retain the port fa 0/0 as switch port only. I know to donot want to configure mac ACL. Can you guide me how to achieve this.

RK

1 ACCEPTED SOLUTION

Accepted Solutions
Purple

Re: IP access restriction in 3560

5 REPLIES

Re: IP access restriction in 3560

Hi

If u r sure that the switchport will not change for this PC u can use port security to achieve this.

switchport port security

switchport port security mac-address sticky

etc.

Thanks

Mahmood

New Member

Re: IP access restriction in 3560

Hi Mahmood,

Thanks for reply.

But I suppose that switchport port security mac-address sticky is for MAC address and not for IP address attached to the port.

Can you pl. explain how this command help in my scenario

RK

New Member

Re: IP access restriction in 3560

you can set static ip on your pc and use Mahmood's scenario

New Member

Re: IP access restriction in 3560

Hi,

Your idea is good, but "mac-address sticky" will check the MAC address associated with the ports & donot care about the IP address of the server connected.

I can very well use either port ACL. But want to know any other alternative solution similar to port security "mac-address sticky "

Purple

Re: IP access restriction in 3560

119
Views
0
Helpful
5
Replies
CreatePlease to create content