This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Extreme Control with ERS: Accept traffic upon active VLAN + MAC

Extreme Control with ERS: Accept traffic upon active VLAN + MAC

SDR
New Contributor III

‎08-30-2019 02:08 PM

Hello community,
I´m new to Extreme control.

Can somebody explain step by step how to create the following rule with Control and BOSS/VOSS-Devices:

Customer wants to accept traffic, If VLAN ID already (!) configure on a specific port matches e.g. 100 AND MAC-addresse connected to this port matches a predefined MAC-List.
Customer does not want to change VLAN-ID, if MAC matches, but configure VLAN on port does not match.
In this case, access should be rejected.

Thanks in advance!
0 Kudos
5 REPLIES 5

Zdeněk_Pala
Extreme Employee

‎08-30-2019 03:30 PM

This is very unique approach.

you can define locations (set of switch and port).
Then you can create rule: if the mac is in group G100 and the location is L100 then apply vlan100. If the mac is in group G101 and location is L101 then apply vlan101. Otherwise reject.

with the approach above you can define the list of ports in management instead of in the CLI.
in advance: location groups can be synchronized by workflow from ERS switches...

other approach is to explain the customer that his approach is “not best practise and not optimal for troubleshooting (you need to check CLI and GUI”.
Regards Zdeněk Pala
0 Kudos
Top
GTM-P2G8KFN