From: Ivan Kuchin (ivan@iip.net)
Date: Tue Sep 12 2006 - 04:11:22 ART
AFAIR mac-ACL applied to non-IP traffic. This solution can be applied only to
ARP filter. If end-station know ARP all other IP traffic will be permitted.
On Monday 11 September 2006 18:39, David Mitchell wrote:
> I think creating a MAC based access-list permitting only that address
> and applying it to the interface would be a solution to the problem.
> That may be what they're getting at...
>
> -----Original Message-----
> From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
> CCIEin2006
> Sent: Sunday, September 10, 2006 9:08 PM
> To: Cisco certification
> Subject: Mac-address sticky IE vol2 lab 3
>
> Hi group,
>
> In IE vol 2 lab 3 task 1.3 the task states to only accept traffic from
> mac
> address 0000.0c12.3456 without using switchport port-security
> mac-address
> 0000.0c12.3456 command. Also this MAC needs to be stored in config in
> case
> of software reload.
>
> The solution guide states to use the switchport port-security
> mac-address
> sticky command, however Cisco documentation states:
> "When sticky learning is enabled, the interface adds all secure MAC
> addresses that are dynamically learned to the running configuration "
>
> Being that the mac-address is added to the running configuration, it
> will
> not survive a reload, will it? Is that solution valid?
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
-- iWAN kU^IN (mail to: ivan@iip.net) NOC iip.net 137-31-04
This archive was generated by hypermail 2.1.4 : Sun Oct 01 2006 - 16:55:40 ART