334
An OUI, as defined by the IEEE, is the first 24 bits of a MAC address. OUI uniquely identifies a device
vendor.
Configuration guidelines
• Before you enable port security, disable 802.1X and MAC authentication globally.
• Only one port security mode can be configured on a port.
Configuration procedures
To configure basic port security mode:
Ste
1. Configuring global settings for
port security
Required.
Enable port security globally and configure advanced parameters.
Disabled by default.
2. Configuring 802.1X on a port
Required.
Configure the basic port security mode, maximum secure MAC
addresses, intrusion protection, and outbound restriction for a port.
By default, port security is disabled on all ports and access to the ports
is not restricted.
3. Configuring secure MAC
addresses
Optional.
Secure MAC addresses never age out or are lost if they are saved
before the device restarts. One secure MAC address can be added to
only one port in the same VLAN. You can bind a MAC address to one
port in the same VLAN.
Secure MAC addresses can be learned by a port in basic port security
mode, or manually configured in the Web interface.
When the maximum number of secure MAC addresses is reached, no
more can be added. The port allows only packets sourced from a secure
MAC address to pass through.
By default, no secure MAC addresses are configured.
To configure advanced port security mode:
Ste
1. Configuring global settings for
port security
Required.
Enable port security globally and configure advanced parameters.
By default, port security is disabled globally.
2. Configuring advanced port
security control
Required.
Configure an advanced port security mode, intrusion protection,
outbound restriction, and select whether to ignore the authorization
information from the RADIUS server.
By default, port security is disabled on all ports and access to the ports
is not restricted.
To Next Page
Loading...
