This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

How to block specified MAC on B5

How to block specified MAC on B5

kcerb
New Contributor

‎11-13-2013 10:34 AM

Hi, I have B5's working with NetSight 5. It is possible to block specified devices (by MAC) on ethernet port? Due to authentication quantity restrictions of devices (4) I must restrict some unnecessary devices on one port.
0 Kudos
6 REPLIES 6

Tom_Currier
Extreme Employee

‎11-13-2013 08:28 PM

When Mac Locking is enabled at the port level there are two settings to be concerned about. The first is the number of dynamically locked Mac addresses. The default setting of 600 in Policy Manager allows up to 600 MAC addresses to come into the port as "First Arrival" addresses. These may be moved to static by a single button push or by manually adding them to the table. Once you've learned all the mac addresses that you want on a port and have pushed them to Static, you can set dynamic to zero. Once the zero value is applied, this will only allow the statically locked macs on the port. Any others that try to come in will not be learned and their traffic discarded. The other setting is the number of statically locked MAC addresses allowed on this device type and the range is controlled through the port properties screen. We expect our video to be up on youtube within 24 hours to demonstrate this functionality and showing the screens where these settings are configured. A MAC address should only show up once in the Locked Mac Address table. Please make sure that both your firmware and Netsight versions are up to date. If they are and the problem persists, we'll want to pursue this behavior further via a GTAC case.
0 Kudos

Tom_Currier
Extreme Employee

‎11-13-2013 01:41 PM

There are several solutions available. Our Network Access Control solution allows you to lock a mac to a specific port, preventing it from roaming elsewhere on the network. MAC Locking is available to lock specific MACs to a port and set the amount of MACs allowed to a specific number. Managing MAC locking is done via our Policy Manager application and a video is currently being produced to demonstrate the feature and it's capability. Our policy solution provides for a policy role to be applied to a port that will allow you to specify a MAC address to be blocked on that port. Below is a link to our youtube video which goes over a basic Policy Manager implementation: http://www.youtube.com/watch?v=2UkXuoMPbrU&list=PL4A31CD3CEF34A7B3 You may want to contact our GTAC or open an on-line case for further discussion of which solution would work best for you.
0 Kudos
GTM-P2G8KFN