08-04-2005 05:34 PM - edited 03-02-2019 11:37 PM
Is it possible to block DHCP requests to an IOS DHCP server (v12.3T) by using a MAC address access-list (700-799)? Where would the access-list be applied?
Thanks,
RJ
08-05-2005 01:38 PM
Hi,
I've never really played around with MAC address access-lists, i have seen them configured though specifically for bridging mainframe protocols over a WAN.
One idea that springs to mind that could work is to create a DHCP reservation based on the MAC address with an IP that is not routable on your network.
Or you could look at configuring port security on your switches to specifically only allow access to your network from trusted hosts.
All the best
Paddy
08-05-2005 01:50 PM
Thanks for the reply. Unfortunately, I need some clients to make a request to a DHCP server on another segment after they have been denied by the local IOS DHCP server.
08-05-2005 01:54 PM
Ahh i see.
I've just had a hunt around, does this help?
Rgds
PJD
08-05-2005 02:14 PM
This is close but I cannot use it. This filters on Layer 2 protocol destination and source. I need to filter an OUI Layer 2 MAC as source to all Bootp packets. Besides, I am using a standard image on a 2950 and it does not have Vlan access maps.
Thanks,
RJ
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide