这里或许有你想找的东西
第一步:DHCP 服务配置:
no ip dhcp conflict logging
ip dhcp excluded-address 172.25.9.1 172.25.9.99
ip dhcp excluded-address 172.25.9.150 172.25.9.254
ip dhcp pool 172.25.9.0/24
network 172.25.9.0 255.255.255.0
default-router 172.25.9.253
dns-server 172.25.0.200 172.25.0.201
netbios-name-server 172.25.0.200 172.25.0.201
lease 3
第二步:ACL配置:
ip access-list extended Temp
permit icmp any any
permit ip any host 172.25.0.1
permit ip any host 172.25.0.12
permit ip any host 172.25.0.200
permit ip any host 172.25.0.201
permit ip any host 172.25.5.5
permit ip any host 172.25.5.167
permit ip any host 172.25.5.206
permit ip any host 172.25.5.210
deny ip any any
ACL应用:
interface Vlan9
description Temp Staff
ip address 172.25.9.253 255.255.255.0
ip broadcast-address 172.25.9.255
ip access-group Temp in
ip directed-broadcast
第三步:MAC地址过滤
主机PC地址与MAC地址绑定
ip dhcp pool vlan9_PC
host 172.25.9.100 255.255.255.0
client-identifier 0010.c6dd.93fa
default-router 172.5.9.253
!
接口MAC地址过滤
nterface GigabitEthernet1/0/44
description Temp
switchport access vlan 9
switchport mode access
switchport nonegotiate
switchport port-security maximum 2
switchport port-security
switchport port-security violation restrict
switchport port-security mac-address 0010.c6dd.93fa
switchport port-security mac-address 0050.8b0d.1c46
ip access-group Temp in
spanning-tree portfast
!
内容全部来源于网络收集,如有侵权,请联系网站删除:QQ:24596024