Need help with Mac Filtering on a 2950

[TiggerDaKat]

We have a Cisco WS-C2950-1z running version 12.1(19)EA1c.
We are having trouble figuring out how to setup this switch for Mac filtering.
There are three workstations connected to it, and one crossover cable to another switch. We'd like to turn off all unused ports and set Mac filtering on the used ports to allow only the repsective workstations' Mac addresses to work on them.
Could someone give us some advice or direction as to how to do this? Our searched online haven't solved this for us.
Thanks in advance.

Eric

 

[Ludoggg]

To turn off unused ports, see the command sequence below where the fa0/1, fa0/2,etc are your unused fastethernet ports:

Switch#con t
Switch(config)#int fa0/1
Switch(config-if)#shutdown

The shutdown command will administratively take down an interface and you can verify that in priv exec mode by entering:

Switch# sh int fa0/1

As far a MAC address filtering, see the example below. Remember, you can't configure port security on ports that connect to other switches. By default, the port security will allow a single MAC address per interface but you can configure up to 132 using the switchport port-security maximum command. The sticky command allows the interface to dynamically learn the first MAC address is hears. To verify the port hasn't been compromised by another MAC address, at the priv exec prompt, type sh port-security interface fa0/1:

Switch#con t
Switch(config)#int fa0/1
Switch(config-if)#switchport mode access
Switch(config-if)switchport port-security mac-address sticky
Switch(config-if)#ctrl z
Switch# copy run start

 

[KiscoKid]

You can configure multiple ports at the same time using the range command as follows:

switch(config)#interface range fa0/1 - 12
switch(config-if-range)#shutdown

switch(config)#interface range fa0/13 - 24
switch(config-if-range)#switchport port-security mac-address sticky