Re: How to filter a MAC address on 6513

jin5 · ‎09-18-2004

I want to block a PC from Catalist 6513 so that the PC cannot participate in our LAN. Is there any helpful configuration for ACL to filter this out using MAC address? Thanks in advance.

Young

pflunkert · ‎09-19-2004

Hi Young,

the blocking from mac-adresses is possible. It depends from your softwareversion. On a IOS Switch you can use this:

Configuring MAC Address-Based Traffic Blocking

To block all traffic to or from a MAC address in a specified VLAN, perform this task:

Command

Purpose

Router(config)# mac-address-table static mac_address vlan vlan_ID drop

Blocks all traffic to or from the configured MAC address in the specified VLAN.

Router(config)# no mac-address-table static mac_address vlan vlan_ID

Clears MAC address-based blocking.

This example shows how to block all traffic to or from MAC address 0050.3e8d.6400 in VLAN 12:

Router# configure terminal

Router(config)# mac-address-table static 0050.3e8d.6400 vlan 12 drop

URL: http://www.cisco.com/en/US/partner/products/hw/switches/ps708/products_configuration_guide_chapter09186a0080160a59.html#wp1074871

On a CatOS switch you should use this:

This example shows how to create a filter that restricts traffic for a specific MAC address:

Console> (enable) set cam static filter 00-02-03-04-05-06 1

Filter entry added to CAM table.

Console> (enable)

URL http://www.cisco.com/en/US/partner/products/hw/switches/ps708/products_configuration_guide_chapter09186a008007f986.html

Regards

Peter

jin5 · ‎09-19-2004

Thanks a lot!!! I'll apply the configuration tomorrow.