General discussion


Cisco Switch IP address Filtering

By wepollak ·

At one of our remote sites, I implemented port security. There are 20 users, 2 printers, and a router. At this location, I have a Catalyst 2950.

I first enabled port security with the "sticky" option to learn the Mac
addresses of the pc connected to the interfaces. I then changed the
interface statement removing the "sticky" option. I did this because,
the Mac addresses learned while in sticky mode are not retained during a reload.

But then......

2 of the workstations were laptops. The users of these laptops wanted mobility to move their laptop from their office to a conference room.
Can you imagine!

I needed ( actually, my boss demanded) to have port security. Cisco ios would allow a Mac address to be assigned only to a single interface. Oh my! What should I do?

The solution.....

I reserved the IP address of these laptops in the DHCP server. Then I implemented an IP address ACL on the interface connected to the conference room.

The result .....

My boss is happy. Yes!
The users are happy. Well this is good also.
I am happy. I was able to dust off my ACL skills

Bill Pollak
Network Administrator
Trenton, NJ

This conversation is currently closed to new comments.

Thread display: Collapse - | Expand +

All Comments

Collapse -


by malik_first In reply to Cisco Switch IP address F ...

Dear Bill Pollak

I am faceing the same type of problem,
can you send me the step by step configuration you have discussed
my mail address is &

Collapse -

sir i have a querry regarding cisco switch

by adi18284 In reply to Cisco Switch IP address F ...

sir i m working as a network integrator in PNB ZOnal Office Bank...I have installed a cisco catalyst 2950 switch in one of our remote branch...I want to see all the IP address of branch Pc's while on telneting the cisco switch...i m able to see their mac address but unable to see IP address...please suggest me what i do...

Related Discussions

Related Forums