DES-3526 / DES-3526DC Layer 2 Fast Ethernet Switch CLI Reference Manual
23
6
Port Security Commands
The Switch’s port security commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in
the following table.
Command Parameters
config port_security ports [<portlist> | all] {admin_state [enable| disable] | max_learning_addr
<max_lock_no 0-64> | lock_address_mode [Permanent |
DeleteOnTimeout | DeleteOnReset]}
delete port_security entry vlan_name <vlan_name 32> mac_address <macaddr> port <port>
clear port_security_entry port <portlist>
show port_security {ports <portlist>}
Each command is listed, in detail, in the following sections.
config port_security ports
Purpose
Used to configure port security settings.
Syntax config port_security ports [<portlist> | all ] {admin_state [enable|
disable] | max_learning_addr <max_lock_no 0-64> |
lock_address_mode [Permanent | DeleteOnTimeout |
DeleteOnReset]}
Description
This command allows for the configuration of the port security feature.
Only the ports listed in the <portlist> are affected.
Parameters
portlist − Specifies a port or range of ports to be configured.
all − Configure port security for all ports on the Switch.
admin_state [enable | disable] – Enable or disable port security for the
listed ports.
max_learning_addr <max_lock_no 0-64> - Use this to limit the number of
MAC addresses dynamically listed in the FDB for the ports.
lock_address_mode [Permanent | DeleteOnTimout | DeleteOnReset] –
Indicates the method of locking addresses. The user has three choices:
Permanent – The locked addresses will not age out after the
aging timer expires.
DeleteOnTimeout – The locked addresses will age out after the
aging timer expires.
DeleteOnReset – The locked addresses will not age out until the
Switch has been reset.
Restrictions
Only administrator-level users can issue this command.
Example usage:
To configure the port security:
DES-3526:4#config port_security ports 1-5 admin_state enable
max_learning_addr 5 lock_address_mode DeleteOnReset
Command: config port_security ports 1-5 admin_state enable
max_learning_addr 5 lock_address_mode DeleteOnReset
Success.
DES-3526:4#