ZyXEL Communications USG 2000 IP/MAC Binding, 22.1 IP/MAC Binding Overview, 22.1.1What You Can Do in this Chapter

IP/MAC Binding

22.1 IP/MAC Binding Overview

IP address to MAC address binding helps ensure that only the intended devices get to use privileged IP addresses. The ZyWALL uses DHCP to assign IP addresses and records to MAC address it assigned each IP address. The ZyWALL then checks incoming connection attempts against this list. A user cannot manually assign another IP to his computer and use it to connect to the ZyWALL.

Suppose you configure access privileges for IP address 192.168.1.27 and use static DHCP to assign it to Tim’s computer’s MAC address of 12:34:56:78:90:AB. IP/MAC binding drops traffic from any computer trying to use IP address 192.168.1.27 with another MAC address.

Figure 304 IP/MAC Binding Example

Bob

MAC: 12:34:56:78:90:AB

IP: 192.168.1.27

Jim
	MAC: AB:CD:EF:12:34:56
	IP: 192.168.1.27

22.1.1What You Can Do in this Chapter

•Use the Summary and Edit screens (Section 22.2 on page 410) to bind IP addresses to MAC addresses.

•Use the Exempt List screen (Section 22.3 on page 413) to configure ranges of IP addresses to which the ZyWALL does not apply IP/MAC binding.

	409
ZyWALL USG 2000 User’s Guide	409