Re: Blocking access to network via IP/MAC/dhcpd?

This is a discussion on Re: Blocking access to network via IP/MAC/dhcpd? within the IPFilter forums, part of the System Security and Security Related category; On 2007-11-29 17:49, Mire, John wrote: > We blackhole in the core 6509s using the mac address ...


Go Back   Usenet Forums > System Security and Security Related > IPFilter

Reload this Page Re: Blocking access to network via IP/MAC/dhcpd?

FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply

 

LinkBack Thread Tools Search this Thread Display Modes
  #1 (permalink)  
Old 11-29-2007
Jefferson Ogata
 
Posts: n/a
Default Re: Blocking access to network via IP/MAC/dhcpd?
On 2007-11-29 17:49, Mire, John wrote:
> We blackhole in the core 6509s using the mac address along with port security on the access layer with only one(1) MAC address association per port,

In that case, setting static arp entries on the firewall and disabling
native arp on the protected interface(s) should do the trick. Prolly the
easiest effective option.

--
Jefferson Ogata <Jefferson.Ogata@noaa.gov>
NOAA Computer Incident Response Team (N-CIRT) <ncirt@noaa.gov>
"Never try to retrieve anything from a bear."--National Park Service
Reply With Quote
Reply
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are Off
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT +1. The time now is 05:28 PM.

Contact Us - Usenet Forums - Archive - Top

Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.0.0