Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
778
Views
0
Helpful
1
Replies

VPN site-to-site with ACL by MAC Address

aleguedes1983
Level 1
Level 1

‎10-18-2012 12:54 PM - edited ‎03-03-2019 06:48 AM

Hi Guys,

I need configure a VPN site-to-site between two offices (Office A e Office B)

The Office A (headquarters) have a Router CIsco 5510 and we have approximately 200 employess

The Office B (branch) dont have any cisco Router but we will buy one ( is a small office, we have aproximadaly 20 guys)

So I need configure a VPN  site-to-site using the IPSec (do this is easy), but i need control the computers in the Office B that can access the Office A.

I Think that I can use a acl using the Mac Address to control, but how can I apply a control access List by Mac Address in the VPN site-to-site that is configured using a IPSec?

Is there other form to control the access of the Office B to Office A? We have a big fear for example, a unknow computer connect in the Office B using any mode off access (Ethernet cable, or Wirelless), and this "unwanted" computer access the Office A.

Sorry for my bad English, is not my native language =(

Thank you so much for the help

Labels:
0 Helpful
1 Reply 1

paolo bevilacqua
Hall of Fame
Hall of Fame

‎10-22-2012 08:38 AM

You cannot configure mac-level ACL for VPN, or to anything else neither.

To prevent unknow computers to connect your network, look at 802.1x MAC authentication in the switch.

0 Helpful
Customers Also Viewed These Support Documents