take a look into Port Security. http://www.cisco.com/en/US/products/hw/switches/ps708/products_configuration _guide_chapter09186a008007f2dd.html
In the event of a security violation, you can configure the port to go into shutdown mode or restrictive mode. The shutdown mode option allows you to specify whether the port is permanently disabled or disabled for only a specified time. The default is for the port to shut down permanently. The restrictive mode allows you to configure the port to remain enabled during a security violation and drop only packets that are coming in from insecure hosts. Kevin Wigle ----- Original Message ----- From: "John Zaggat" To: Sent: Saturday, October 05, 2002 5:01 PM Subject: How to restrict hubs in a LAN [7:54937] > I am just trying to think of how to restrict Hubs from being used in the > LAN. Politically it's a mess and despite a lot of discussions certain people > are able to add hubs at will where ever they want. So I was trying to think > of a way to stop that within the switch. Now normally these ports that the > hubs are connected to show several mac addresses when I do "show cam" which > gives me an idea is there any way to restrict host ports to only accept one > mac-address. I don't want to hardcode the mac-address because that would be > too much a administrative burden. But if I could restrict the port to accept > just one mac-address then that will make these hubs useless. Well anyways > let me know if I am way off here but are there any other tricks in use by > any of you guys. I'll appreciate any pointers. > JZ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=54940&t=54937 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
