SUMMARY STEPS
1.
configure terminal
2.
interface interface-id
3.
switchport mode {access | trunk}
4.
switchport voice vlan vlan-id
5.
switchport port-security
6.
switchport port-security [maximum value [vlan {vlan-list | {access | voice}}]]
7.
switchport port-security violation {protect | restrict | shutdown | shutdown vlan}
8.
switchport port-security [mac-address mac-address [vlan {vlan-id | {access | voice}}]
9.
switchport port-security mac-address sticky
10.
switchport port-security mac-address sticky [mac-address | vlan {vlan-id | {access | voice}}]
11.
end
12.
show port-security
13.
copy running-config startup-config
DETAILED STEPS
PurposeCommand or Action
Enters global configuration mode.configure terminal
Example:
Switch# configure terminal
Step 1
Specifies the interface to be configured, and enter interface configuration mode.
interface interface-id
Example:
Switch(config)# interface
Step 2
gigabitethernet1/0/1
Sets the interface switchport mode as access or trunk; an interface in the default
mode (dynamic auto) cannot be configured as a secure port.
switchport mode {access | trunk}
Example:
Switch(config-if)# switchport
Step 3
mode access
Enables voice VLAN on a port.
switchport voice vlan vlan-id
Step 4
Example:
Switch(config-if)# switchport
vlan-id—Specifies the VLAN to be used for voice traffic.
voice vlan 22
Catalyst 2960-XR Switch Security Configuration Guide, Cisco IOS Release 15.0(2)EX1
OL-29434-01 341
Configuring Port-Based Traffic Control
Enabling and Configuring Port Security
To Next Page
Loading...
