Hi, all.
I want to bind MAC/IP on port. The wanted comportment is to not allow port changing from one floor to another. As example : people from SW1 port 2 change room and switch his PC/Laptop to SW2 port 10. My approach is to not allow this.
Interesting question.
Problem withe MAC leases is they are temporary… and not tied to ports that I can think of…
Musings only…
Assign each floor a different DHCP pool.
To not use DHCP server (off mode) and assign DHCP statically by IT staff.
Turn off, network settings access by company users on pC.
Perhaps something can be done with VLANs for separation control?
I wonder if logging into the network (via radius type server) is where one can be denied on the basis of which managed switch they are using??
As an idea is disable ARP on ports, and manually add IP:MAC on port, i will test this and reply.
Vlan right now i can’t use because some people have LAN and WiFi connection, some PC’s have also WiFi NOT LAN, this is the trouble. My idea with PC’s will not work on this type of PC’s.