Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
264
Views
0
Helpful
1
Replies

Block the nodes in access layer

siljugpillai
Level 1
Level 1

‎12-16-2001 10:56 PM - edited ‎03-01-2019 07:45 PM

Hi,

I have a customer who is having 3524 in access layer and 4908G in distribution layer. All the nodes attached to 3524 are on the same vlan. But he wants to restrict some users on the same vlan accessing some servers. I cannnot restrict this based on IP address on L3 switch as he is having a fear of these blocked users might access the servers using the static addresses of the allowed ones. Is there any way of blocking these users in 3524 itself (based on mac addresses)?

Thanks for any help

regards,

Silju

Labels:
0 Helpful
1 Reply 1

gopal
Level 1
Level 1

‎12-31-2001 02:16 AM

Hi Silju,

As I understand all your users are on the 3524 and they are a single VLAN and the servers are in a different VLAN and subnet, thus the users have to cross the 4908 switch to reach the servers....

If the servers were also on the same 3500 as the users, then port protection would have done the job, else if the users have to cross the 4908 switch to reach the servers then the restriction shall have to be by IP addresses only.

Pls revert.

Rgds

0 Helpful
Customers Also Viewed These Support Documents