xStack® DGS-3420 Series Layer 2 Managed Stackable Gigabit Switch CLI Reference Guide
178
Chapter 12
BPDU Attack
Protection Commands
config bpdu_protection ports [<portlist> | all] {state [enable | disable] | mode [drop | block |
shutdown]}(1)
config bpdu_protection recovery_timer [<sec 60-1000000> | infinite]
config bpdu_protection [trap | log] [none | attack_detected | attack_cleared | both]
show bpdu_protection {ports {<portlist>}}
12-1 config bpdu_protection ports
Description
This command is used to configure port state and mode for BPDU protection.
Note: Only in the shutdown mode will the port link be forced down. If the port status is Err-
disabled but the port link is up, check the show ports err-disabled command for the
reason.
Format
config bpdu_pr
otectio
n ports [<portl
ist> | all] {sta
te [enable | disab
le] | mode [dro
p | block |
shutdown]} (1)
Parameters
<portlist> - Specify a range of ports to be configured.
all - Specify to set all ports in the system.
state - Specify the BPDU protection state. The default state is disabled.
enable - Enable the BPDU protection state.
disable - Disable the BPDU protection state.
mode - Specify the BPDU protection mode. The default mode is shutdown.
drop - Specify to drop all received BPDU packets when the port enters the under attack state.
block - Specify to drop all packets (include BPDU and normal packets) when the port enters the
under attack state.
shutdown- Specify to shut down the port when the port enters the under attack state.
Restrictions
Only Administrator, Operator and Power-User level users can issue this command.
To Next Page
Loading...
