Configuring the ECN330-switch
1431553-KDU 137 365 Uen D 2006-06-16
Command Usage
• A secure port has the following restrictions:
• It cannot use port monitoring.
• It cannot be a multi-VLAN port.
• It cannot be used as a member of a static or dynamic trunk.
• It should not be connected to a network interconnection device.
• The default maximum number of MAC addresses allowed on a secure
port is zero. A maximum address count from 1 - 20 must be configured
for the port to allow access.
• If a port is disabled (shut down) due to a security violation, it must be
manually re-enabled from the Port/Port Configuration page (page 187).
Command Attributes
• Port – Port number.
• Name – Descriptive text (page 187).
• Disable MAC Learning – Disables MAC address learning for the
selected port, and flush all MAC addresses that have learned on this
port.
Security Status cannot be configured when this option is selected. Also
note that MAC address learning cannot be disabled if 802.1x Port
Authentication has been globally enabled on the ECN330-switch (see
“Configuring 802.1X Global Settings” on page 148), or GVRP has been
enabled on a port (see “Configuring VLAN Behavior for Interfaces” on
page 290).
• Action – Indicates the action to be taken when a port security violation
is detected:
• None: No action should be taken. (This is the default.)
• Trap: Send an SNMP trap message.
• Shutdown: Disable the port.
• Trap and Shutdown: Send an SNMP trap message and disable the
port.
To Next Page
Loading...
