Configuring and Monitoring Port Security
Overview
Overview
Feature Default Menu CLI Web
Displaying Current Port Security n/a — page 11-8 page 11-32
Configuring Port Security disabled — page 11-11 page 11-32
Retention of Static Addresses n/a — page 11-16 n/a
MAC Lockdown disabled — page 11-21
MAC Lockout disabled — page 11-29
Intrusion Alerts and Alert Flags n/a page 11-38 page 11-36 page 11-39
Port Security (Page 11-4). This feature enables you to configure each
switch port with a unique list of the MAC addresses of devices that are
authorized to access the network through that port. This enables individual
ports to detect, prevent, and log attempts by unauthorized devices to commu
-
nicate through the switch.
Not e This feature does not prevent intruders from receiving broadcast and multi-
cast traffic. Also, Port Security and MAC Lockdown are mutually exclusive on
a switch. If one is enabled, then the other cannot be used.
MAC Lockdown (Page 11-21). This feature, also known as “Static
Addressing”, is used to prevent station movement and MAC address “hijack
-
ing” by allowing a given MAC address to use only an assigned port on the
switch. MAC Lockdown also restricts the client device to a specific VLAN.
(See also the Note, above.)
MAC Lockout (Page 11-29). This feature enables you to block a specific
MAC address so that the switch drops all traffic to or from the specified
address.
11-3
To Next Page
Loading...
