Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
5655
Views
0
Helpful
4
Replies

Block DHCP by MAC address

tech
Level 1
Level 1

‎08-04-2005 05:34 PM - edited ‎03-02-2019 11:37 PM

Is it possible to block DHCP requests to an IOS DHCP server (v12.3T) by using a MAC address access-list (700-799)? Where would the access-list be applied?

Thanks,

RJ

Labels:
0 Helpful
4 Replies 4

paddyxdoyle
Level 6
Level 6

‎08-05-2005 01:38 PM

Hi,

I've never really played around with MAC address access-lists, i have seen them configured though specifically for bridging mainframe protocols over a WAN.

One idea that springs to mind that could work is to create a DHCP reservation based on the MAC address with an IP that is not routable on your network.

Or you could look at configuring port security on your switches to specifically only allow access to your network from trusted hosts.

All the best

Paddy

0 Helpful

tech
Level 1
Level 1
In response to paddyxdoyle

‎08-05-2005 01:50 PM

Thanks for the reply. Unfortunately, I need some clients to make a request to a DHCP server on another segment after they have been denied by the local IOS DHCP server.

0 Helpful

paddyxdoyle
Level 6
Level 6
In response to tech

‎08-05-2005 01:54 PM

Ahh i see.

I've just had a hunt around, does this help?

http://www.cisco.com/en/US/products/hw/switches/ps646/products_configuration_example09186a0080470c39.shtml

Rgds

PJD

0 Helpful

tech
Level 1
Level 1
In response to paddyxdoyle

‎08-05-2005 02:14 PM

This is close but I cannot use it. This filters on Layer 2 protocol destination and source. I need to filter an OUI Layer 2 MAC as source to all Bootp packets. Besides, I am using a standard image on a 2950 and it does not have Vlan access maps.

Thanks,

RJ

0 Helpful
Customers Also Viewed These Support Documents