General discussion

Locked

Sticky ports

By kevaburg ·
For me the best solution is to use sticky MAC addresses on switch ports and not necessarily to use DHCP to control the access. A MAC address will be registered during the client systems start-up and if the MAC doesn't match what is in the MAC table the port will be closed down, requiring administrative intervention.

This conversation is currently closed to new comments.

Thread display: Collapse - | Expand +

All Comments

Collapse -

may I ask

by .Martin. In reply to Sticky ports

as to what you are referring to?

Collapse -

Just a guess

by CharlieSpencer In reply to may I ask

The 'DHCP ports' discussion.

Collapse -

Im referring to.....

by kevaburg In reply to may I ask

.....not using DHCP to restrict access. On most managed switches there is a switchport security function that will essentially "lock" a switchport to a MAC address. With unused ports being shut down there is very little chance (never say never!) of a rogue device coming onto the network. Unplugging a legal device and replacing it with one that is not allowed will cause the port to close down.

Related Discussions

Related Forums