Name: Cisco Catalyst 3560-X
Brand: Cisco
Rating: 4 (1 reviews)

To Next Page

To Previous Page

1-22

Catalyst 3750-X and 3560-X Switch Software Configuration Guide

OL-25303-03

Chapter 1 Configuring DHCP Features and IP Source Guard

Configuring IP Source Guard

This example shows how to stop IPSG with static hosts on an interface.

Switch(config-if)# no ip verify source

Switch(config-if)# no ip device tracking max

This example shows how to enable IPSG with static hosts on a port.

Switch(config)# ip device tracking

Switch(config)# ip device tracking max 10

Switch(config-if)# ip verify source tracking port-security

This example shows how to enable IPSG for static hosts with IP filters on a Layer 2 access port and to

verify the valid IP bindings on the interface Gi1/0/3:

Switch# configure terminal

Enter configuration commands, one per line. End with CNTL/Z.

Switch(config)# ip device tracking

Switch(config)# interface gigabitethernet1/0/3

Switch(config-if)# switchport mode access

Switch(config-if)# switchport access vlan 10

Switch(config-if)# ip device tracking maximum 5

Switch(config-if)# ip verify source tracking

Switch(config-if)# end

Switch# show ip verify source

Interface Filter-type Filter-mode IP-address Mac-address Vlan

--------- ----------- ----------- --------------- ----------------- ----

Gi1/0/3 ip trk active 40.1.1.24 10

Gi1/0/3 ip trk active 40.1.1.20 10

Gi1/0/3 ip trk active 40.1.1.21 10

This example shows how to enable IPSG for static hosts with IP-MAC filters on a Layer 2 access port,

to verify the valid IP-MAC bindings on the interface Gi1/0/3, and to verify that the number of bindings

on this interface has reached the maximum:

Switch# configure terminal

Enter configuration commands, one per line. End with CNTL/Z.

Switch(config)# ip device tracking

Switch(config)# interface gigabitethernet1/0/3

Switch(config-if)# switchport mode access

Switch(config-if)# switchport access vlan 1

Switch(config-if)# ip device tracking maximum 5

Switch(config-if)# switchport port-security

Switch(config-if)# switchport port-security maximum 5

Switch(config-if)# ip verify source tracking port-security

Switch(config-if)# end

Step 11

show ip verify source interface interface-id Verify the configuration and display IPSG permit ACLs

for static hosts.

Step 12

show ip device track all

[active | inactive] count

Verify the configuration by displaying the IP-to-MAC

binding for a given host on the switch interface.

• all active—display only the active IP or MAC

binding entries

• all inactive—display only the inactive IP or MAC

binding entries

• all—display the active and inactive IP or MAC

binding entries

Command Purpose

Questions and Answers:

Need help?

Do you have a question about the Cisco Catalyst 3560-X and is the answer not in the manual?

Cisco Catalyst 3560-X Specifications

General

Enclosure Type	Rack-mountable - 1U
Subtype	Gigabit Ethernet
Ports	48 x 10/100/1000 + 4 x SFP
Flash Memory	64 MB
Power Device	Internal power supply
Voltage Required	AC 120/230 V (50/60 Hz)
Operating System	Cisco IOS
Device Type	Switch
Performance	Switching capacity: 128 Gbps
Jumbo Frame Support	Yes
Routing Protocol	RIP-1, RIP-2, EIGRP
Remote Management Protocol	SNMP 1, RMON 1, RMON 2, RMON 3, RMON 9, Telnet, SNMP 3, HTTP, HTTPS
Features	DHCP support, VLAN support, QoS, IPv6 support, Syslog
Compliant Standards	IEEE 802.3, IEEE 802.3u, IEEE 802.3z, IEEE 802.1D, IEEE 802.1Q, IEEE 802.3ab, IEEE 802.1p, IEEE 802.3af, IEEE 802.3x, IEEE 802.3ad, IEEE 802.1w, IEEE 802.1x, IEEE 802.1s, IEEE 802.3ah, IEEE 802.1ag, IEEE 802.3at
Stacking	Stackable
Security Features	SSH, RADIUS, TACACS+
Management	CLI
Dimensions (H x W x D)	17.5 in
Operating Temperature	32 to 113 °F (0 to 45 °C)
Humidity	10 - 95% (non-condensing)