From: Jake (jakeczyz@xxxxxxxxx)
Date: Tue May 28 2002 - 17:18:41 GMT-3
Juan,
The ARP cache is for communication with the SC0 port only. If you want a p
articular
machine (i.e. MAC Address) to be tied to a particular port, you need to enable
port
security as Nate said and configure your local friendly DHCP server to have a p
articular
IP address host reservation for this MAC. This is the only way I can think of t
o do it.
The traditional switch doesn't deal with IP addresses at all (excpet for m
anagement
communication), unless you're doing MLS (e.g. on an MSFC in a 6500) but this in
effect
makes your green box a fast router and makes this a whole different story. If w
hat you
are trying to do involves the management communication, than an IP permit might
be
involved, but it sounds like this is not what you are trying to do. Maybe if yo
u tell us
what problem you're trying to solve, it would clarify things. (Also, what model
box we're
talking about.) Good luck.
HTH,
Jake
9102
--- Nate Van Maren <nate@sisna.com> wrote:
> Would port security work for what you're trying to do? This would tie a
> machine to a specific port on the switch.
>
> -Nate
> > jfaure@sztele.com wrote:
> > >
> > > Hi Guys!
> > >
> > > I'm wondering how can I reserve a Mac ADDRESS and an IP address (the
> two
> > > conditions) to a specific Catalyst layer 2 switch port. I know you can
> set
> > > a permanent or static entry in the CAM table of it, but the problem is
> to
> > > reserve the IP address too, to only permit that a PC with this MAC and
> this
> > > IP can connect to the switch by this specific port.
> > >
> > > I've seen that you can "edit" the ARP table of the switch, and you can
> set
> > > an ARP entry too. The problem is that if you don't stablish the
> aging-time
> > > to infinite, this entry (that would link the MAC address and the IP
> address
> > > I need) will be deleted. Then, if I stablisht the aging-time to
> infinite,
> > > the switch don't relearns the macs (I think) and then it can be a
> problem
> > > if you translate some equipment from a Catalyst port to another one.
> > >
> > > Do you know any way to do so, or do you think this is the right way to
> > > solve this?
> > >
> > > Regards
> > >
> > > Juan Faure Ferrer
> > > email: jfaure@sztele.com
> > >
> > > Lmnea de Negocio de Telematica y CC
> > > Ingeniero de Integracisn de Redes y Sistemas
> >
> > --------------------------------------------------------------------------
> --
> > >
> > > SOLUZIONA TELECOMUNICACIONES
> > > Servicios Profesionales de UNION FENOSA
> > > Jerez, 3
> > > 28016 MADRID
> > > tel 91 579 30 00 fax 91 350 72 83
> >
> > --------------------------------------------------------------------------
> -
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:59:10 GMT-3