Solved: Re: Filter Traffic by Mac Address - Cisco Community

1201

Views

0

Helpful

2

Replies

Hi,

Is it possible to configure cisco router like C3800 or catalyst switches like C4500 or C2960 to filter traffic based on allowable mac addresses only? Or any device that you could suggest.

I would like only to allow those devices that belongs to the domain, meaning if a user connects a computer or any devices that concerns network which I have not allowed the mac addresses, it will be denied access to the network. However, any of the allowable devices could able to use any port of the switch, meaning I dont want to associate an allowable Mac Address to a physical port on the switch.

I hope somebody could able help me on this.

Thanks,

Richard

1 Accepted Solution

Accepted Solutions

Hi Richard,

on the 4500 you can do this by creating a mac access-list:

http://www.cisco.com/en/US/docs/switches/lan/catalyst4500/12.2/31sga/configuration/guide/secure.html#wp1051626

and then using it in a vlan map:

http://www.cisco.com/en/US/docs/switches/lan/catalyst4500/12.2/31sga/configuration/guide/secure.html#wp1051696

I believe you cannot do the same on a 2960 but you may want to double check (perhaps ask in or in

hth

Herbert

View solution in original post

2 Replies 2

Hi Richard,

on the 4500 you can do this by creating a mac access-list:

http://www.cisco.com/en/US/docs/switches/lan/catalyst4500/12.2/31sga/configuration/guide/secure.html#wp1051626

and then using it in a vlan map:

http://www.cisco.com/en/US/docs/switches/lan/catalyst4500/12.2/31sga/configuration/guide/secure.html#wp1051696

I believe you cannot do the same on a 2960 but you may want to double check (perhaps ask in or in

hth

Herbert

Thanks dude. I'm sorting it right now.

Learn, share, save

Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.

New here? Get started with these tips. How to use Community New member guide

Log in to Community