PurposeCommand or Action
Displays which VLANs are excluded.
(Optional) show ip ver source [ethernet slot/port |
port-channel channel-number]
Step 3
Example:
switch(config)# show ip ver source
Copies the running configuration to the startup
configuration.
(Optional) copy running-config startup-config
Example:
Step 4
switch(config)# copy running-config startup-config
Displaying IP Source Guard Bindings
Use the show ip ver source [ethernet slot/port | port-channel channel-number] command to display the
IP-MAC address bindings.
Clearing IP Source Guard Statistics
To clear IP Source Guard statistics, use the commands in this table.
PurposeCommand
Clears IP Source Guard statistics.
clear access-list ipsg stats [instance number | module number]
Configuration Example for IP Source Guard
This example shows how to create a static IP source entry and enable IP Source Guard on an interface:
ip source binding 10.5.22.17 001f.28bd.0013 vlan 100 interface ethernet 2/3
interface ethernet 2/3
no shutdown
ip verify source dhcp-snooping-vlan
show ip ver source
IP source guard excluded vlans:
------------------------------------------------------
None
-----------------------------------
IP source guard is enabled on the following interfaces:
------------------------------------------------------
ethernet2/3
Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.x
410
Configuring IP Source Guard
Displaying IP Source Guard Bindings
To Next Page
Loading...
