>Personally, I've never come across a situation where MAC-based VLANs were >useful..... Port-based membership is more practical/common. You can always >enforce port-security based on MAC address, but still have the same problem >with regard to if someone changes their NIC, it'll require a call to you to >change things up to make them work. > >Mike W.
I agree they aren't that useful, but they are in fairly common use with DSL and cable providers, who use the modem/router MAC address as a primitive form of security. And yes, equipment changes do cause problems. > >"Irwan Hadi" wrote in message >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... >> Dear All, >> >> Suppose that I create a MAC based VLAN with for example 100 computers. >> All of these computers either will get IP from the DHCP for the >> 10.0.1.0/24 IP block, or they can hard wired their own IP provided that >> the IP is their own, and it is in the 10.0.1.0/24 subnet. >> >> Now suppose one person changes his NIC at his computer. This of course >will >> makes >> the switch won't recognize his new MAC address, and hard wired his IP to >> the one at 10.0.1.0/24. >> >> My question is will his connection get bumped out from the network ? >> > > Thanks -- "What Problem are you trying to solve?" ***send Cisco questions to the list, so all can benefit -- not directly to me*** ******************************************************************************** Howard C. Berkowitz [EMAIL PROTECTED] Chief Technology Officer, GettLab/Gett Communications http://www.gettlabs.com Technical Director, CertificationZone.com http://www.certificationzone.com "retired" Certified Cisco Systems Instructor (CID) #93005 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=41610&t=41572 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
