3550 port security w/o L2 or L3 access-list

From: KT Wee (cciekt@yahoo.com)
Date: Thu Feb 06 2003 - 09:18:14 GMT-3

Next message: John Tafasi: "Traffic generator"
Previous message: Gareth Bromley: "Re: Traffic generators"
Next in thread: Sam.MicroGate@usa.telekom.de: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Sam.MicroGate@usa.telekom.de: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Khalid A. Kaseb: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: KT Wee: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: KT Wee: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Sam.MicroGate@usa.telekom.de: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Casey, Paul (6822): "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Olive, Darren: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Sam.MicroGate@usa.telekom.de: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Sam.MicroGate@usa.telekom.de: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Sam.MicroGate@usa.telekom.de: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Michael Snyder: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Michael L. Williams: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Voss, David: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: enyi abajue: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Yinka Daramola: "Re: 3550 port security w/o L2 or L3 access-list"
Maybe reply: FRANCISCO JAVIER COPETE AGUADO: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Donny MATEO: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Tim Fletcher: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: KT Wee: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Desmond: "Re: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Kleberg, Jason: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Logan, Harold: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Joy Sarkar: "Re: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Swink, Dave: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Khalid Siddiq: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Desmond: "Re: 3550 port security w/o L2 or L3 access-list"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi Guys,

Got a scenario on 3550. Only allow packet with mac-address 1234.1234.1234 and ip address 1.1.1.1 to access port fa0/1. Cannot use L2 or L3 access list. I though of using switchport port-security and arp static mapping as follow:

interface FastEthernet0/1
switchport mode access
switchport port-security
switchport port-security mac-address 1234.1234.1234

arp 1.1.1.1 1234.1234.1234 ARPA

I am able to ping to 1.1.1.1. But if I change the host to 1.1.1.2, I am still able to ping to 1.1.1.2. This would go against the condition only the host with 1.1.1.1 is allowed. I saw some thread similar before but can't find anything in archive. Please help thanks.

Regards

---------------------------------
Do you Yahoo!?
Yahoo! Mail Plus - Powerful. Affordable. Sign up now
.

Next message: John Tafasi: "Traffic generator"
Previous message: Gareth Bromley: "Re: Traffic generators"
Next in thread: Sam.MicroGate@usa.telekom.de: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Sam.MicroGate@usa.telekom.de: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Khalid A. Kaseb: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: KT Wee: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: KT Wee: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Sam.MicroGate@usa.telekom.de: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Casey, Paul (6822): "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Olive, Darren: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Sam.MicroGate@usa.telekom.de: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Sam.MicroGate@usa.telekom.de: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Sam.MicroGate@usa.telekom.de: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Michael Snyder: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Michael L. Williams: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Voss, David: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: enyi abajue: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Yinka Daramola: "Re: 3550 port security w/o L2 or L3 access-list"
Maybe reply: FRANCISCO JAVIER COPETE AGUADO: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Donny MATEO: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Tim Fletcher: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: KT Wee: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Desmond: "Re: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Kleberg, Jason: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Logan, Harold: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Joy Sarkar: "Re: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Swink, Dave: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Khalid Siddiq: "RE: 3550 port security w/o L2 or L3 access-list"
Maybe reply: Desmond: "Re: 3550 port security w/o L2 or L3 access-list"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sat Mar 01 2003 - 11:06:11 GMT-3