Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
455
Views
0
Helpful
0
Replies

Private VLAN IP Conflict question

calcifaids
Level 1
Level 1

‎09-15-2016 08:58 AM

Hi,

I'm currently working on a little project to try and save IP addresses.
I've created a Private VLAN with a secondary isolated VLAN, such that I can add multiple different hosts without wasting multiple addresses on the network address and broadcast addresses, however I'm wondering if there is a way to stop clients selecting different IP's to the ones I want them to have.

The first thing I thought of was to apply a set of static ARP and MAC tables so that a specific MAC address can only use one port and VLAN. However this would also mean placing dummy holders across the entire range of un-used IP's to prevent them simply being used by a client.

I don't want to implement any form of active directory on the client servers.

Is there a better way to save IP addresses, and prevent server traffic being accessible to others?

Thanks.

Edit: Just to update.

I have utilised an ACL using the parameters 
permit ip host 192.168.1.4 any 
And applied it to the relevant port.

Pinging from the host address .4 to the gateway works.
Changing the address on the host to .3 and pinging the gateway does not (which is promising).

I haven't had a proper chance to test outside traffic attempting to talk to the server, so does anyone know if using this ACL will stop this from happening?

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card