HPE Community
Aruba & ProVision-based
1752725 Members
5683 Online
108789 Solutions
New Discussion

Only allowing certain mac addresses on switch

 
cgbullock
Occasional Contributor

‎04-05-2013 08:06 AM

‎04-05-2013 08:06 AM

Only allowing certain mac addresses on switch

We are going to be sharing an office with another company and I would like to set some rules on my switches to only allow devices that I know about.  We plan to connect to the office using Metro Ethernet from our ISP so this will be a Layer 2 connection with no firewalls.  We plan to have about 4 devices at the location, printer, IP phone, 2 desktops.  I plan to "disable" the ports not in use, but I want to lock down the switch so that someone can not take an IP address on the same VLAN and swap out a network cable with our equipment.

I have looked at static-mac but that doens't seem to do what I would like it to do.

Regards,

Chris

0 Kudos
1 REPLY 1
LorenzoCastro
Frequent Advisor

‎04-09-2013 06:22 PM

‎04-09-2013 06:22 PM

Re: Only allowing certain mac addresses on switch

Hi Chris,  have you taken a look at port security with the port-security command?  With this you can setup up each port with a static mac address and force a few different responses if the mac isn't specified.

 

Hope that helps,

 

Lorenzo 

The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.