Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
248
Views
0
Helpful
1
Replies

5000 switch port security to an ip address only

mustafa.mail
Level 1
Level 1

‎04-14-2002 05:03 AM - edited ‎03-01-2019 09:17 PM

I know that the 5000 switch set port security can give mac address (layer 2) security, what i need to know, is it possible to secure a port to give access to an ip address only instead of a mac address.

Labels:
0 Helpful
1 Reply 1

malvord
Level 1
Level 1

‎04-16-2002 05:26 AM

The majority of L3 info a L2 switch will use is communication w/ its management interface. There are other instances of non-management L3 traffic such as IGMP snooping when a L2 device will peek into a L3 packet; but mostly they deal strictly w/ L2 frames.

What does this mean? You can create an IP access list for telnet as well as SNMP (I believe). This won't help you lock down users though.

Port security is mostly to prevent unknown systems from gaining network access and yes it is based on the number of MAC addresses.

maybe you can just break the fingers of anyone that plugs into your network w/out a valid IP?

This L3 port security could be a nice feature down the road.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents