CISCO SWITCHES - RESTRICTING NETWORK ACCESS VIA MAC ADDRESS (OR MAYBE IP ADDRESS)
Posted on 2008-10-03
I have a situation where a printer technician came to one of our remote locations, plugged his laptop in, set an IP address, and then was on our network.
We do only static IP addressing in our branches so he just picked what he thought was a non-used IP address after looking at one of the other workstations.
I would like to be able to build a table of MAC-ADDRESSES or IP ADDRESSES that are allowed. If the switch determines that the MAC or IP is not listed, no traffic can pass.
Then ultimately I would like to get notifcation of the attempt.
We have a mix of CISCO catalyst switches (29xx/35xx)