Address Table Commands
169 OL-32830-01 Command Line Interface Reference Guide
5
See the mac address-table static command for information about MAC address
attributes (type and time-to-live) definitions.
When the port security command enables the lock mode on a port all dynamic
addresses learned on the port are changed to permanent secure addresses.
When the port security command enables a mode on a port differing from the lock
mode all dynamic addresses learned on the port are deleted.
When the no port security command cancels a secure mode on a port all secure
addresses defined on the port are changed to dynamic addresses.
Additionally to set a mode, use the port security command to set an action that the
switch should perform on a frame which source MAC address cannot be learned.
Example
The following example forwards all packets to port gi11 without learning
addresses of packets from unknown sources and sends traps every 100 seconds,
if a packet with an unknown source address is received.
switchxxxxxx(config)#
interface gi14
switchxxxxxx(config-if)#
port security mode lock
switchxxxxxx(config-if)#
port security forward trap 100
switchxxxxxx(config-if)#
exit
5.23 port security mode
To configure the port security learning mode, use the port security mode Interface
(Ethernet, Port Channel) Configuration mode command. To restore the default
configuration, use the no form of this command.
Syntax
port security mode {max-addresses | lock | secure permanent | secure
delete-on-reset}
no port security mode
To Next Page
Loading...
Need help?
General
