Learned Port Security Commands
OmniSwitch 6250 CLI Reference Guide November 2009 page 19-3
Usage Guidelines
• Use the no form of this command to remove LPS and clear all entries from the table. This command
enables learning of new MAC addresses.
• The port-security chassis disable command disables all the LPS-eligible ports on the chassis.
Disabling port security restricts a port from learning new MAC addresses.
• LPS is supported on 10/100 and Gigabit Ethernet fixed, mobile, authenticated, 802.1Q tagged ports,
and 802.1x ports.
• LPS is not supported on 10 Gigabit Ethernet, link aggregate, or 802.1Q tagged link aggregate (trunked)
ports.
• Note that when LPS is enabled on an active port, all MAC addresses learned on that port prior to the
time LPS was enabled are cleared from the source learning MAC address table.
• Configurable MAC learning restrictions consist of setting a source learning time limit window, speci-
fying a maximum number of MACs allowed on a specific port, configuring a list of MAC addresses
(individual or range of addresses) allowed on the port, and determining how a port handles traffic that
is unauthorized.
Examples
-> port-security 4/8 enable
-> port-security 2/1-10 enable
-> port-security 2/11-15 disable
-> no port-security 1/1-12
Release History
Release 6.6.1; command was introduced.
Related Commands
MIB Objects
learnedPortSecurityTable
lpsAdminStatus
port-security mac Configures a single authorized source MAC address for a port that
belongs to a specified VLAN.
port-security mac-range Configures a list of authorized MAC addresses by defining a range of
addresses allowed on the port.
port-security maximum Specifies the maximum number of source MAC addresses that an LPS
port(s) is allowed to learn.
port-security shutdown Configures the amount of time in minutes to allow source learning on all
LPS ports.
port-security violation Selects the method for handling traffic that does not comply with LPS
restrictions for the specified port(s).
To Next Page
Loading...
