195
This feature does not apply to VLAN authorization failure. The device logs off these users directly.
To enable the authorization-fail-offline feature:
1. Enter system view.
system-view
N/A
2.
authorization-fail-offline
feature.
port-security authorization-fail
offline
By default, this feature is disabled,
and the device does not log off
users who fail ACL or user profile
authorization.
Enabling SNMP notifications for port security
This feature is available in Release 1121 and later.
Use this feature to report critical port security events to an NMS. For port security event notifications
to be sent correctly, you must also configure SNMP on the device. For more information about SNMP
configuration, see the network management and monitoring configuration guide for the device.
For this feature to take effect, make sure the intrusion protection feature is configured.
To enable SNMP notifications for port security:
1.
view.
system-view
N/A
2. Enable SNMP
port security.
snmp-agent trap enable port-security
[
address-learned
|
dot1x-failure
|
dot1x-logoff
|
dot1x-logon
|
intrusion
|
mac-auth-failure
|
|
] *
By default, SNMP
notifications are disabled
for port security.
Displaying and maintaining port security
Execute display commands in any view:
Display the port security configuration,
operation information, and statistics.
display port-security
[
interface
interface-type
interface-number ]
Display information about secure MAC
addresses.
display port-security mac-address security
[
interface
interface-type interface-number ] [
vlan-id ] [
]
Display information about blocked MAC
addresses.
display port-security mac-address block
[
interface
interface-type interface-number ] [
vlan
vlan-id ] [
count
]
To Next Page
Loading...
Need help?
General