Static MAC for a router interface

I have a Cisco 851 router that is setup as a VPN device. I have a managed switch connected to an interface on the 851. I want to be able to assign a static MAC for the paticular interface so that the connected switch is the only device allowed to connect to that port. However, the router must still be able to learn and pass traffic from MAC addresses of devices connected to the switch. Is this possible?

Interesting, thanks for the report/tip!

Similar Messages

DM-VPN with Static NAT for Spoke Router. Require Expert Help

Dear All,
            This is my first time to write something .
                         i have configure DM-VPN, and it's working fine, now i want to configure static nat.
some people will think why need static nat if it's working fine.
let me tell you why i need. what is my plan.
i have HUB with 3 spoke. some time i go out side of my office and not able to access my spoke computer by Terminal Services. because its by dynamic ip address. so what i think i'll give one Static NAT on my HUB Router that if any one or Me Hit the Real/Public IP address of my HUB WAN Interface from any other Remote location so redirect this quiry to my Terminal Service computer which located in spoke network.
will for that i try but fail.
will again the suggestion will come. why not to use .. Easy VPN. well sound great. but then i have to keep my notebook with me.
i'll also do it but now i need that how to do Static NAT. like for normal Router i am doing which is not part of VPN.
ip nat inside source static tcp 192.168.1.10 3389 interface Dialer1 3389
but this time this command is not working, because the ip address which i mention it's related HUB Network not Spoke
spose spoke Network: 192.168.2.0/24
and i want on HUB Router:
ip nat inside source static tcp 192.168.2.10 3389 interface Dialer1 3389
i am using Cisco -- 887 and 877 ADSL Router.
but it's not working,   Need experts help. please write your comment's which are very important for me. waiting for your commant's
fore more details please see the diagram.
for Contact Me: [email protected]

hi rvarelac thank you for reply :
i allready done that , i put a deny statements in nat access-list excluding the vpn traffic , but the problem still there !
crypto isakmp policy 10
encr aes
authentication pre-share
crypto isakmp key 12344321 address 1.1.1.1
crypto ipsec transform-set Remote-Site esp-aes esp-sha-hmac
mode tunnel
crypto map s2s 100 ipsec-isakmp
set peer 1.1.1.1
set transform-set Remote-Site
match address vpnacl
interface GigabitEthernet0/0
crypto map s2s
Extended IP access list lantointernet
30 deny icmp 172.17.0.0 0.0.1.255 192.168.1.0 0.0.0.255
40 deny igmp 172.17.0.0 0.0.1.255 192.168.1.0 0.0.0.255
50 deny ip 172.17.0.0 0.0.1.255 192.168.1.0 0.0.0.255
80 permit ip any any

I have a hard drive for CD storage that needs to connect to the Ethernet router. sInce my router is not in this room, and in another room, I want to use my Mac as a router for the drive, and share the wifi. Ho do I do this

I have a hard drive for CD storage that needs to connect to the Ethernet router. sInce my router is not in this room, and in another room, I want to use my Mac as a router for the drive, and share the wifi. Ho do I do this? I gace tried the System Preferences -> Sharing, shared internet to Ethernet, but can't se ethe device on Finder

Djembe wrote:
UEFI (unified extensible firmware interface) boot requires Global unique identifier Partition Table (GPT) as opposed to the older Master Boot Record (MBR). If your existing drive is formatted in MBR, you will need to adjust BIOS settings to enable legacy boot in order for it to work properly.
Is there a performance difference between GPT and MBR? If GPT is better, I do not mind formatting the drive with it.
5. No special drivers are needed.
Thanks. What about the thunderbolt port?
7. I think Lenovo estimates 6 hours.
Lenovo says 6 hours with the 6-cell battery on its website.
BrendaEM wrote:
Hi,
There was a serious BIOS/UEFI problem with that SSD . Perhaps this thread will save you some headaches. Someone is recomending shutting off Rapid Boot in the setup, which would probable mean little with a SSD, anyway.
I read through this, and it looks like the problem was fixed in a BIOS update, which I plan to do. However, it also seems like Intel Rapid Start is not even worth it in the first place, as sleep consumes almost no power at all.
W540: i7-4700mq, K2100m, 8 GB DDR3L, 512 GB SSD
T510: i7-620m, NVS 3100m, 8 GB DDR3, 512 GB SSD

Tying MAC to static IP with WRT54GL router

Hi,
We are using a WRT54GL wireless router to connect 4 pc's to the internet. One of these pc's requires a static IP address since the router can only reliably do port-forwarding for static IP's (I would like to SSH to it and use it as a web-server). I was told that this router had this capability, but for the life of me I can't find it.
Would someone tell me how to do this? I am running the latest firmware (v4.30.11).
Thanks in advance for your reply,
Michiel
Solved!
Go to Solution.

DD-WRT is pretty stable and well maintained. There are a lot of people using it and you get excellent support, if you don't mind some very technical answers at occasions. Generally, flashing unsupported firmware will void the warranty. But that would only be a problem if you had a bad flash. And even for a bad flash you often have options to recover the router.
For the static IP address on the computer change the network settings for the ethernet interface. I don't know Gentoo you should have administration GUI for that somewhere.
You can use the following values:
IP address (as mentioned before) e.g. 192.168.1.10
subnet mask 255.255.255.0
gateway address 192.168.1.1
DNS server 192.168.1.1
As long as the static IP addresses do not create conflicts with the DHCP server address pool there won't be any issues running some static IP computers in the same LAN with DHCP clients.

I need advise and help with this problem . First , I have been with Mac for many years ( 14 to be exact ) I do have some knowledge and understanding of Apple product . At the present time I'm having lots of problems with the router so I was looking in to

I need advise and help with this problem .
First , I have been with Mac for many years ( 14 to be exact ) I do have some knowledge and understanding of Apple product .
At the present time I'm having lots of problems with the router so I was looking in to some info , and come across one web site regarding : port forwarding , IP addresses .
In my frustration , amongst lots of open web pages tutorials and other useless information , I come across innocent looking link and software to installed called Genieo , which suppose to help with any router .
Software ask for permission to install , and about 30 % in , my instinct was telling me , there is something not right . I stop installation . Delete everything , look for any
trace in Spotlight , Library . Nothing could be find .
Now , every time I open Safari , Firefox or Chrome , it will open in my home page , but when I start looking for something in steed of Google page , there is
''search.genieo.com'' page acting like a Google . I try again to get raid of this but I can not find solution .
With more research , again using genieo.com search eng. there is lots of articles and warnings . From that I learn do not use uninstall software , because doing this will install more things where it come from.
I do have AppleCare support but its to late to phone them , so maybe there some people with knowledge , how to get this of my computer
Any help is welcome , English is my learned language , you may notice this , so I'm not that quick with the respond

Genieo definitely doesn't help with your router. It's just adware, and has no benefit to you at all. They scammed you so that they could display their ads on your computer.
To remove it, see:
http://www.thesafemac.com/arg-genieo/
Do not use the Genieo uninstaller!

We are contemplating a Mac for a family Christmas gift -we currently use a windows based laptop. Do the two systems interface? If a child starts his homework on the pc - can he finish it on the Mac? Can they both be hooked up to the same printer?

We are Mac beginners, considerin a Mac for a family Christmas gift. We currently share one windows based pc. Does anyone use a Mac AND a pc in their household? Would the two systems interface? (Can you start your homework on one system, but finish it on another?) Can they both be hooked up to the same printer? What advice would you give us as we consider this big purchase?

You may find this useful:
Switching from Windows to Mac:
http://support.apple.com/kb/HT2514?viewlocale=en_US
and
http://support.apple.com/kb/HT2518?viewlocale=en_US
and possible even the 'propaganda bits':
Macs are cheaper to own that PCs: http://techpatio.com/2010/apple/mac/it-admins-total-cost-ownership-mac-less-pc
and: http://www.zdnet.com/blog/apple/tco-new-research-finds-macs-in-the-enterprise-ea sier-cheaper-to-manage-than-windows-pcs/6294
Why will you love Mac? http://www.apple.com/why-mac/
- Better Hardware http://www.apple.com/why-mac/better-hardware/
- Better software http://www.apple.com/why-mac/better-software/
- Better OS http://www.apple.com/why-mac/better-os/
- Better Support http://www.apple.com/why-mac/better-support/
- It's Compatible http://www.apple.com/why-mac/its-compatible/

How do I fix incorrect resolution for Firefox user interface on Retina display Mac?

I have a 15" retina display Mac (roughly a year old) running Mountain Lion. A couple weeks ago the user interface in Firefox seems have switched from using the normal zoom level of every other application to the native dpi of the retina display monitor. This means that the UI elements are all extremely tiny, etc. Is there anyway to reset this without simply reinstalling or reseting the rest of my configuration?
Currently running Firefox 27.0.

You can try to modify the gfx.hidpi.enabled pref on the <b>about:config</b> page (<=0: disable; 1:all screens same res; >1:enable always).
*http://kb.mozillazine.org/about:config
Try to disable hardware acceleration in Firefox (you need to close and restart Firefox).
*Firefox > Preferences > Advanced > General > Browsing: "Use hardware acceleration when available"
*https://support.mozilla.org/kb/Troubleshooting+extensions+and+themes
You can set the layout.css.devPixelsPerPx pref on the <b>about:config</b> page to 1.0 and if necessary adjust layout.css.devPixelsPerPx starting from 1.0 in 0.1 or 0.05 steps (1.1 or 0.9) to make icons show correctly.
*http://kb.mozillazine.org/about:config
See also:
*https://support.mozilla.org/kb/forum-response-Zoom-feature-on-Firefox-22
Use an extension to adjust the text size in the user interface and the page zoom in the browser window.
You can look at this extension to adjust the font size for the user interface.
*Theme Font & Size Changer: https://addons.mozilla.org/firefox/addon/theme-font-size-changer/
You can look at the Default FullZoom Level or NoScript extension if web pages need to be adjusted after changing layout.css.devPixelsPerPx.
*Default FullZoom Level: https://addons.mozilla.org/firefox/addon/default-fullzoom-level/
*NoSquint: https://addons.mozilla.org/firefox/addon/nosquint/

How to add a route for a specific interface

HI,
i want to make a direct link beetween 2 computers (ubuntu and solaris) with a cross over cable.
solaris : e1000g0 (192.168.0.212= normal network)
e1000g1 (172.18.0.2 = network for interconnection beetween ubuntu and solaris
routing table:
Destination Gateway Flags Ref Use Interface
default 192.168.0.245 UG 1 7040 e1000g0
192.168.0.0 192.168.0.212 U 1 5167 e1000g0
224.0.0.0 192.168.0.212 U 1 0 e1000g0
127.0.0.1 127.0.0.1 UH 4 30343 lo0
ubuntu : eth0 (192.168.0.144 = normal network)
eth1 (172.18.0.3 = network for interconnection beetween ubuntu and solaris)
routing table :
Destination Gateway Genmask Flags MSS Window irtt Iface
192.168.0.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
169.254.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth0
0.0.0.0 192.168.0.245 0.0.0.0 UG 0 0 0 eth0
at the beginning, i was thinking that no route was necessary, but the ping didn't work beetween the two servers.
so, my question is : how can i add a route for a specific interface on my solaris (i want that the traffic for the network 172.18.0.0 go throught e1000g1)
thank for your help

SOLARIS :
-bash-3.00# ifconfig -a
lo0: flags=2001000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv4,VIRTUAL> mtu 8232 index 1
inet 127.0.0.1 netmask ff000000
e1000g0: flags=1004843<UP,BROADCAST,RUNNING,MULTICAST,DHCP,IPv4> mtu 1500 index 2
inet 192.168.0.212 netmask ffffff00 broadcast 192.168.0.255
ether 0:1b:24:f0:7a:fc
e1000g1: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 3
inet 172.18.0.2 netmask ffffff00 broadcast 172.18.0.255
ether 0:1b:24:f0:7a:fd
-bash-3.00# netstat -rn
Routing Table: IPv4
Destination Gateway Flags Ref Use Interface
default 192.168.0.245 UG 1 7040 e1000g0
192.168.0.0 192.168.0.212 U 1 5323 e1000g0
224.0.0.0 192.168.0.212 U 1 0 e1000g0
127.0.0.1 127.0.0.1 UH 8 31593 lo0
-bash-3.00#
UBUNTU :
ifconfig
eth0 Link encap:Ethernet HWaddr 00:1e:c9:d1:22:ea
inet addr:192.168.0.144 Bcast:192.168.0.255 Mask:255.255.255.0
inet6 addr: fe80::21e:c9ff:fed1:22ea/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:19992226 errors:0 dropped:0 overruns:0 frame:0
TX packets:9886296 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:10075930406 (10.0 GB) TX bytes:2847567457 (2.8 GB)
Interrupt:16 Memory:f8000000-f8012700
eth1 Link encap:Ethernet HWaddr 00:1e:c9:d1:22:ec
inet addr:172.18.0.3 Bcast:172.18.0.255 Mask:255.255.255.0
inet6 addr: fe80::21e:c9ff:fed1:22ec/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:919 errors:0 dropped:0 overruns:0 frame:0
TX packets:905 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:58816 (58.8 KB) TX bytes:91286 (91.2 KB)
Interrupt:16 Memory:f4000000-f4012700
# netstat -rn
Kernel IP routing table
Destination Gateway Genmask Flags MSS Window irtt Iface
192.168.0.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
169.254.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth0
0.0.0.0 192.168.0.245 0.0.0.0 UG 0 0 0 eth0

How to get the command line interface for WRT160NL router

hi,
How can I get the command line interface for WRT160NL router. please suggest.

If you’re trying to access the web-based interface of your router, just use its default IP address (192.168.1.1). The Username is left blank and the Password is "admin". Here’s a quick link on how to do that.

Static IP for Mac OS 10.5 -- Help!

I'm not sure how to set up an static IP for my macbook. It will be using my airport, not my built in ethernet. Can someone provide me a step by step guide? I'm lost. Thanks!

SystemPreferences-->Network-->select Airport-->click Advanced-->TCP/IP tab.
configure ipv4 --manually
enter your IP
subnet
router IP
click OK --> click Apply

Static MAC stay if interface down

Hello,
Due to business circonstance I need a static mac in my switch.
However, if the interface releated to this static mac is down the mac entry remain and cause all traffic to be dropped.
I would, this mac address to be learned only if a specific interface is down. otherwise my static entry should direct of this mac to this specific interface.
I need a static mac, but this also break redundancy if this specific interface is down :(

Hi,
I am not sure whether this answers your specific requirement or not, but have you tried adding the 'auto-learn' option to the static mac-address entry - this seems to cause the switch to ignore the static mac address if the same mac address is learnt on another interface. Is that what you want or do you simply want the static mac address to have precedence over dynamically learnt mac addresses unless the line protocol of the static mac address interface goes down.
Very best wishess
Mike

Can you help? Two dialer interfaces with IP SLA for default route failover - issues

I have an issue with a Cisco 2821, it has an ADSL2+ HWIC whose ATM interfaces is linked to dialer 1 and a Gi0/1 interface with a pppoe client which is linked to dialer 2. Both dialer interfaces are up with their respective IP addresses. If the ADSL on dialer 1 fails i want the IP SLA to kick and and replace the default route for dialer 1 with one for dialer 2.
This config works if you manually shut down the dialer 1 interface, it injects the default route for dialer 2 and then when you unshut the interface, the default route for dialer 1 comes back. The problem i have is if you take out the cable for the ATM interface and take it down, it does not take the route out the routing table and the default route for dialer2, which works if you just shut down dialer 1 does not appear.
whats the difference between shutting down dialer1 and it fails over the default route and taking the cable out then it does not?
Here is my config, i'm sure its something simple i'm doing wrong, can anyone help???
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
hostname Router
boot-start-marker
boot-end-marker
logging message-counter syslog
enable secret 5 $1$qOOJ$HV5AH6US/YZMuCGPYp3pP.
no aaa new-model
dot11 syslog
ip source-route
ip cef
ip dhcp excluded-address 192.168.0.1
ip dhcp pool pool1
network 192.168.0.0 255.255.255.0
default-router 192.168.0.1
dns-server 188.92.232.50 188.92.232.100
no ip domain lookup
no ipv6 cef
multilink bundle-name authenticated
voice-card 0
no dspfarm
archive
log config
hidekeys
track 1 ip sla 1 reachability
interface GigabitEthernet0/0
description Gi0/30 Local LAN
ip address 192.168.0.1 255.255.255.0
ip verify unicast reverse-path
no ip redirects
no ip unreachables
no ip proxy-arp
ip flow ingress
ip nat inside
ip virtual-reassembly
no ip mroute-cache
duplex auto
speed auto
snmp trap ip verify drop-rate
no mop enabled
interface GigabitEthernet0/1
no ip address
duplex auto
speed auto
pppoe enable group global
pppoe-client dial-pool-number 2
interface ATM0/2/0
description ATM0_DSL
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
ip flow ingress
logging event atm pvc state
logging event subif-link-status
no atm ilmi-keepalive
dsl operating-mode auto
dsl enable-training-log
pvc 0/38
encapsulation aal5mux ppp dialer
dialer pool-member 1
interface Dialer1
ip address negotiated
no ip redirects
no ip unreachables
no ip proxy-arp
ip mtu 1492
ip nat outside
ip virtual-reassembly
encapsulation ppp
dialer pool 1
keepalive 1 3
no cdp enable
ppp lcp predictive
ppp authentication pap chap callin
ppp chap hostname ********@ccsleeds.net
ppp chap password 0 ********
ppp pap sent-username *******@ccsleeds.net password 0 ********
interface Dialer2
ip address negotiated
no ip redirects
no ip unreachables
no ip proxy-arp
ip mtu 1492
encapsulation ppp
dialer pool 2
keepalive 1 3
no cdp enable
ppp lcp predictive
ppp authentication pap chap callin
ppp chap hostname **********@adsllogin.co.uk
ppp chap password 0 *********
ppp pap sent-username *********@adsllogin.co.uk password 0 ***********
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 Dialer1 track 1
ip route 0.0.0.0 0.0.0.0 Dialer1
ip route 0.0.0.0 0.0.0.0 Dialer2 10
no ip http server
no ip http secure-server
ip nat inside source list 1 interface Dialer1 overload
ip sla 1
icmp-echo 8.8.8.8 source-interface di1
timeout 1000
threshold 100
frequency 3
ip sla schedule 1 life forever start-time now
access-list 1 permit 192.168.0.0 0.0.0.255
control-plane
gatekeeper
shutdown
line con 0
line aux 0
line vty 0 4
password test
login
scheduler allocate 20000 1000
end

Sure that EEM can shut/unshut interface...you have "event track" in EEM for monitoring track events...for example:
event manager applet test
event track 1 state down
action 1.0 command "enable"
action 1.1 command "conf t"
action 1.2 command "interfac dialer 1"
action 1.3 command "shut"
action 1.4 syslog "Dialer 1 down!!!"
action 1.5 end
This would be an example from head :)
You would need another EEM similar to this one for unshutting interface with "event track 1 state up" for bringing interface up again.
Again as I said you would need to test this before putting in production and you would maybe need to tweak this a little bit acording to your needs...
BR,
Dragan

My airport is turned itself off and lose contact with my wifi router, trying to turn it on again will not work, I have to restart my Mac for it to work again, but after 5 minutes, the problem is to go back again.

my airport is turned itself off and lose contact with my wifi router, trying to turn it on again will not work, I have to restart my Mac for it to work again, but after 5 minutes, the problem is to go back again.

Hi ..
Follow the instructions for resetting the SMC > Intel-based Macs: Resetting the System Management Controller (SMC) - Apple Support

MIB walk for a router with MPLS enabled interfaces

To perform some testing in an agent I am building, I need a MIB walk for a router with MPLS enabled interfaces. I would greatly appreciate help with this MIB walk

You can do a walk-through of the MIB by running a command such as getmany -v2c public mplsLsrMIB . For detailed instructions refer http://cisco.com/en/US/docs/ios/12_2t/12_2t2/feature/guide/lsrmibt.html.

Updating firmware etc. for E1200 router

When I bought my E1200 router my primary (in fact only) computer was a Windows laptop. Since that time I bought a MacBook Pro and have been using that as my primary computer. The Mac is running on the latest OS (Mountain Lion).
I would like to install the latest software to maintain the router on my Mac but I was told several months ago that there was no update available for Mountain Lion. Does anyone know if that has changed, and if so where can I download the appropriate software?
Thank you.

I suggest that you install the cisco connect software to another computer. But you can always manage the router manually by accessing the router interface. If you need to check the wireless settings, you can still do that even if you don't have cisco connect.
Please check the link below how you can access the router interface:
Title: Accessing the router’s web-based setup page using a Mac® computer
Article ID: 15841

Static MAC for a router interface

Similar Messages

Maybe you are looking for