Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
316
Views
0
Helpful
1
Replies

Catalyst 2960 mac filtering

lacostewin
Level 1
Level 1

‎04-25-2015 01:48 AM - edited ‎03-07-2019 11:43 PM

Good day!

 

Have a

* 1 26 WS-C2960-24TT-L 12.2(58)SE2 C2960-LANBASEK9-M

interface FastEthernet0/11
description -ND to Netgear flor 1 ---
switchport trunk native vlan 7
switchport trunk allowed vlan 3,7
switchport mode trunk
mac access-group wifi-secure in
no cdp enable
spanning-tree bpdufilter enable
end

Extended MAC access list wifi-secure
deny host 844b.f5bd.4393 any
deny any host 844b.f5bd.4393
permit any any

 

My question:

Is it possible to prohibit the passage of MAC address on port 7 vlan?
Already available conf Notices prohibits the passage of MAC address per port for any vlan.

Labels:
0 Helpful
1 Reply 1

Mark Malone
VIP Alumni
VIP Alumni

‎04-25-2015 10:30 AM

Just a couple of options might work , you could setup private vlans and isolate the ports so they can only comminucate with what you allow  or try a PACL or VACL if your software supports it

http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst6500/ios/15-0SY/configuration/guide/15_0_sy_swcg/port_acls.html#wp1110659

http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst3560/software/release/12-2_52_se/configuration/guide/3560scg/swpvlan.html

0 Helpful
Customers Also Viewed These Support Documents