Railroad
asked on
MAC Filtering on a Cisco 2960
I am trying to block internet access from a specific mac address on the network with our Cisco 2960. Ideally I'd like to only block access to f0/2, as this is where the firewall (Cisco ASA 5505) is connected. I have tried:
mac address-table static bc30.5ba5.4812 vlan 20 interface fastEthernet 0/2
This command unfortunately blocks all traffic to the unit. Also tried:
mac access-list extended BlockInternet
deny host bc30.5ba5.4812 any
deny any host bc30.5ba5.4812
permit any any
On the f0/2 interface i applied:
mac access-group BlockInternet in
This doesn't seem to work either.
Suggestions?
mac address-table static bc30.5ba5.4812 vlan 20 interface fastEthernet 0/2
This command unfortunately blocks all traffic to the unit. Also tried:
mac access-list extended BlockInternet
deny host bc30.5ba5.4812 any
deny any host bc30.5ba5.4812
permit any any
On the f0/2 interface i applied:
mac access-group BlockInternet in
This doesn't seem to work either.
Suggestions?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.