Computing.Net > Forums > Windows Server 2003 > MAC Address/Switch Port Association

Computer Problems? Computing.Net has over 1,000,000 posts about all things technology related! Over 90% answered within 24 hours! Click here to start participating now! Also, be sure to check out the New User Guide.

MAC Address/Switch Port Association

Reply to Message Icon

Name: Scott013
Date: April 29, 2008 at 06:41:02 Pacific
OS: Windows 2003 Server
CPU/Ram: -
Product: -
Comment:

I want to prevent (or inform an administrator) when an unknown MAC address connects to a switch port. What are the different ways to do this?

Thanks in advance,
Scott



Sponsored Link
Ads by Google

Response Number 1
Name: Curt R
Date: April 29, 2008 at 06:43:55 Pacific
Reply:

What kind of switches are you using? Make/model would be helpful.


0

Response Number 2
Name: Scott013
Date: April 29, 2008 at 08:01:10 Pacific
Reply:

Sorry. We're using a Nortel Passport 8006 Modular Chassis, which is connected to several Nortel Baystack 450/470s.


0

Response Number 3
Name: Curt R
Date: April 29, 2008 at 12:22:51 Pacific
Reply:

We have dual Nortel Passport 8600's (just upgraded to the 10 GB backplanes) and connected to one of them via Device Manager. From the looks of it, if you edit a port (choose "Edit General") you should be able to set something up in the Mac Learning tab.

I'm not 100% sure not having tried to limit one a MAC per port basis but you could try setting up something there.

We use Baystack 5510's and 5520's extensively and haven't tried limiting connections by MAC per port there either so I'm not sure if you can, or how to if you indeed can. Just had a quick look in DM at a 5510 and if you go "Edit >> Security >> AuthConfig tab" it does show the MAC to port table. I imagine there is a way but short of looking in the manual (and my manuals wouldn't help you.....but that's not stopping you from reading through your management/setup manuals right) and researching it, I couldn't tell you offhand.

Basically, our standard security practice is to leave any ports not in use disabled. This prevents anyone from using a wall outlet say, that has nothing plugged into it. That's not going to stop someone from unplugging a PC and plugging in to that port. Of course, they'd have to know what subnet is running out of that port (good luck with that if you're not in my department) and then pick a valid IP in that subnet in order to gain connectivity.

In a nutshell, you're going to have to get ahold of the manuals for your equipment and do some research/reading.....that's what I'd do if I had to figure something like this out.


0

Sponsored Link
Ads by Google
Reply to Message Icon

Related Posts

See More







Post Locked

This post is quite old and has been locked from receiving new replies. Please create a new posting instead.


Go to Windows Server 2003 Forum Home


Sponsored links

Ads by Google


Results for: MAC Address/Switch Port Association

MAC Address Filtering With Radius www.computing.net/answers/windows-2003/mac-address-filtering-with-radius-/5889.html

mac address spoof detection www.computing.net/answers/windows-2003/mac-address-spoof-detection/7060.html

Block Special MAC Address www.computing.net/answers/windows-2003/block-special-mac-address/4530.html