Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1050
Views
0
Helpful
4
Replies

Port monitoring white shut

Go to solution
adnan.akbar
Level 1
Level 1

‎10-24-2011 03:38 AM - edited ‎03-07-2019 03:01 AM

Hello ,

is it possible to shutdown a  specific port on my 3750x and monitor this port at the same time .

for example , im dealing with a mac authenticated network using port security , i want to shut down all the ports that are not used at the moment , however , if some one gets connected to the one of the shutdown ports  i want to know the mac address of the user or atleast to know that i have someone who is just plugged in to the one of the shutdowned ports .

thanks

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame
In response to adnan.akbar

‎10-24-2011 04:40 AM

Adnan

Isn't that the point of mac-authentication ie. they need to authenticate before they can use the network ?

If you want a further check then a simple solution is -

1) create new vlan for unused ports eg. vlan 998

2) allocate all unused ports into that vlan

3) make sure the vlan is only a L2 vlan  

then a device can be connected, you can see the mac-address but they cannot go anywhere within your network because they cannot route to any other vlans.

You can then decide whether to move them to one of your routed vlans or not.

Jon

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame

‎10-24-2011 04:07 AM

Adnan

Not as far as i know. A shutdown port will not come up if a device is connected and it certainly wouldn't learn the mac-address of the device.

What exactly is the problem you are trying to solve ?

Jon

0 Helpful

Go to solution
adnan.akbar
Level 1
Level 1
In response to Jon Marshall

‎10-24-2011 04:26 AM

i want the data to be resticted on a port so that no one connects to the network until registred in my database .

can have the port up but put a restiction on it not to send/recieve data ?

Adnan

0 Helpful

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame
In response to adnan.akbar

‎10-24-2011 04:40 AM

Adnan

Isn't that the point of mac-authentication ie. they need to authenticate before they can use the network ?

If you want a further check then a simple solution is -

1) create new vlan for unused ports eg. vlan 998

2) allocate all unused ports into that vlan

3) make sure the vlan is only a L2 vlan  

then a device can be connected, you can see the mac-address but they cannot go anywhere within your network because they cannot route to any other vlans.

You can then decide whether to move them to one of your routed vlans or not.

Jon

0 Helpful

Go to solution
adnan.akbar
Level 1
Level 1
In response to Jon Marshall

‎10-24-2011 10:24 PM

Thanks Jon

thats a great one .

cheers

Adnan    

0 Helpful
Customers Also Viewed These Support Documents