C
HAPTER
25
| General Security Measures
Port Security
– 878 –
EXAMPLE
This example shows the port security settings and number of secure
addresses for all ports.
Console#show port security
Global Port Security Parameters
Secure MAC Aging Mode : Disabled
Port Security Port Summary
Port Port Security Port Status Intrusion Action MaxMacCnt CurrMacCnt
--------------------------------------------------------------------------
Eth 1/ 1 Disabled Secure/Down None 0 2
Eth 1/ 2 Enabled Secure/Up None 10 0
Eth 1/ 3 Disabled Secure/Down None 0 0
Eth 1/ 4 Disabled Secure/Down None 0 0
Eth 1/ 5 Disabled Secure/Down None 0 0
.
.
.
The following example shows the port security settings and number of
secure addresses for a specific port. The Last Intrusion MAC and Last Time
Detected Intrusion MAC fields show information about the last detected
intrusion MAC address. These fields are not applicable if no intrusion has
been detected or port security is disabled. The MAC Filter ID field is
configured by the network-access port-mac-filter command. If this field
displays Disabled, then any unknown source MAC address can be learned
as a secure MAC address. If it displays a filter identifier, then only source
MAC address entries in MAC Filter table can be learned as secure MAC
addresses.
Console#show port security interface ethernet 1/2
Global Port Security Parameters
Secure MAC aging mode : Disabled
Port Security Details
Port : 1/2
Port Security : Enabled
Port Status : Secure/Up
Intrusion Action : None
Max-MAC-Count : 0
Table 88: show port security - display description
Field Description
Port Security The configured status (enabled or disabled).
Port Status The operational status:
â—†
Secure/Down – Port security is disabled.
â—†
Secure/Up – Port security is enabled.
â—†
Shutdown – Port is shut down due to a response to a port security
violation.
Intrusion Action The configured intrusion response.
MaxMacCnt The maximum number of addresses which can be stored in the address
table for this interface (either dynamic or static).
CurrMacCnt The current number of secure entries in the address table.
To Next Page
Loading...
Need help?
General
