12-30-2013 07:41 AM
WE use ASA as remote VPN and use DHCP pool on this ASA. Is it possible to block a specific MAC from getting IP from this pool?
thanks,
Han
12-30-2013 09:34 AM
If you block it from getting DHCP from a pool then where do you want it to get an IP from? Another pool? Local?
12-30-2013 10:44 AM
Collin,
We simply dont want it get to the VPN to the network. Any method that we can block this mac would be great, but login here is not an option.
thanks,
Han
12-30-2013 06:57 PM
Hmmmm, I guess what I would do is create a static reservation with an IP that's not valid, like 169.254.254.
01-01-2014 07:01 PM
How about creating an arp entry for the ip
For e.g. The ip is 1.1.1.1 on the inside with Mac address xxxx and 1.1.1.0/24 is the dhcp pool. You don't want to hand out 1.1.1.1 via dhcp
Then you add an entry
Arp inside 1.1.1.1 xxxx
So that Asa excludes 1.1.1.1 from being handed out via dhcp
Sent from Cisco Technical Support iPad App
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide