On Tue, Apr 16, 2002 at 07:03:57AM -0600, Michael L. Williams wrote: > Personally, I've never come across a situation where MAC-based VLANs were > useful..... Port-based membership is more practical/common. You can always > enforce port-security based on MAC address, but still have the same problem > with regard to if someone changes their NIC, it'll require a call to you to > change things up to make them work.
The idea of doing MAC based VLAN is surely for security. I want that computers that aren;t registered yet to have an IP in the 172.16.0.0 subnet, while computers which already registered will have a routable IP address. Right now unregistered computers can still use the routable IP address by hard wired the IP address manually (not through DHCP), and this creates a problem. I'm also thinking to use a Foundry Netiron L3 switches to do this MAC based vlan, so that if someone in the 172.16.0.0 address wants to send data to other in the routable subnet, which is basically served by the same switch, the data doesn;t need to be delivered to the uplink first. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=41666&t=41572 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
