EasyManua.ls Logo

Cisco Catalyst 4500 Series - Configuring IPSG for Static Hosts on a Layer 2 Access Port

Cisco Catalyst 4500 Series
2086 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
60-25
Catalyst 4500 Series Switch, Cisco IOS Software Configuration Guide - Cisco IOS XE 3.9.xE and IOS 15.2(5)Ex
Chapter 60 Configuring DHCP Snooping, IP Source Guard, and IPSG for Static Hosts
Configuring IP Source Guard for Static Hosts
hosts feature uses the IP device tracking functionality to age out dynamically learned IP address
bindings. This feature can be used in conjunction with DHCP snooping. Multiple bindings will be
established on a port that is connected to both DHCP and static hosts (that is, bindings will be stored in
both the device tracking database as well as the DHCP snooping binding database).
Configuring IPSG for Static Hosts on a Layer 2 Access Port
You can configure IPSG for static hosts on a Layer 2 access port.
To enable IPSG for static hosts with IP filters on a Layer 2 access port, perform this task:
Command Purpose
Step 1
Switch(config)# ip device tracking
Turns on the IP host table.
Step 2
Switch(config)# ip device tracking [probe {count
count | interval interval}]
(Optional) Configures these parameters for the IP device
tracking table:
count—Number of times that the switch sends the
ARP probe. The range is 1 to 5. The default is 3.
interval—Number of seconds that the switch waits
for a response before resending the ARP probe. The
range is 30 to 300 seconds. The default is 30
seconds.
Step 3
Switch(config)# ip device tracking [probe {delay
interval}]
(Optional) Configures the optional probe delay
parameter for the IP device tracking table:
interval—Number of seconds that the switch delays
sending an ARP probe, triggered by link-up and
ARP probe generation by the tracked device. The
range is 1 to 120 seconds. The default is 0 seconds.
Step 4
Switch(config)# interface fastEthernet a/b
Enters IP configuration mode.
Step 5
Switch(config-if)# switchport mode access
Configures a port as access.
Step 6
Switch(config-if)# switchport access vlan n
Configures the VLAN for this port.
Step 7
Switch(config-if)# ip device tracking maximum n
Establishes a maximum limit for the bindings on this
port.
Upper bound for the maximum is 10.
Step 8
Switch(config-if)# switchport port-security
(Optional) Activates port security for this port.
Step 9
Switch(config-if)# switchport port-security
maximum n
(Optional) Establishes a maximum number of MAC
addresses for this port.
Step 10
Switch(config-if)# ip verify source tracking
[port-security]
Activates IPSG for static hosts on this port.
Step 11
Switch(config-if)# end
Exits configuration interface mode.

Table of Contents

Other manuals for Cisco Catalyst 4500 Series

Preview: Manual
Manual19 pages
Preview: Administration Guide
Administration Guide1814 pages
Preview: Configuration Guide
Configuration Guide1610 pages
Preview: Command Reference Guide
Command Reference Guide1230 pages
Preview: System Message Guide
System Message Guide150 pages
Preview: Message Guide
Message Guide146 pages
Preview: Quick Reference Guide
Quick Reference Guide59 pages
Preview: Datasheet
Datasheet11 pages
Preview: Installation Guide
Installation Guide194 pages
Preview: Overview
Overview46 pages

Related product manuals