Table 46: Port Security on Interfaces (continued)
Your ActionFunctionField
Select one of the following:
•
log—Generate a system log entry, an SNMP trap, or an
alarm.
•
drop—Drop the packets and generate a system log
entry, an SNMP trap, or an alarm. (Default)
•
shutdown—Shut down the interface and generate an
alarm. You can mitigate the effect of this option by
configuring autorecovery from the disabled state and
specifying a disable timeout value. See Configuring
Autorecovery From the Disabled State on Secure or
Storm Control Interfaces (CLI Procedure)
•
none—Take no action.
EX4300 switches have an additional option:
•
drop-and-log—Drop the packet and generate an alarm,
an SNMP trap, or a system log entry.
Specifies the action to be taken if the MAC
limit is exceeded. This option is not valid for
trunk ports.
MAC Limit Action
To add a MAC address:
1. Click Add.
2. Enter the MAC address.
3. Click OK.
Specifies the MAC addresses that are
allowed for the interface.
Allowed MAC List
Related
Documentation
• Configuring Port Security (CLI Procedure)
• Example: Configuring Basic Port Security Features
• Monitoring Port Security on page 237
• Understanding Port Security Features to Protect the Access Ports on Your Device Against
the Loss of Information and Productivity
83Copyright © 2017, Juniper Networks, Inc.
Chapter 6: Security and Management Configuration
To Next Page
Loading...
