540 Port Security Commands
Port Security Commands
This section describes the command you use to configure Port Security on the
switch. Port security, which is also known as port MAC locking, allows you to
secure the network by locking allowable MAC addresses on a given port. Packets
with a matching source MAC address are forwarded normally, and all other
packets are discarded.
To enable the SNMP trap specific to port security, see “snmp-server enable traps
violation” on page 91.
port-security This command enables port locking on an interface, a range of interfaces, or at
the system level.
no port-security This command disables port locking for one (Interface Config) or all (Global
Config) ports.
port-security max-
dynamic
This command sets the maximum number of dynamically locked MAC addresses
allowed on a specific port. The valid range is 0–600.
Default disabled
Format
port-security
Mode ◆ Global Config (to enable port locking globally)
◆ Interface Config (to enable port locking on an interface or
range of interfaces)
Format
no port-security
Mode ◆ Global Config
◆ Interface Config
Default 600
Format
port-security max-dynamic
maxvalue
To Next Page
Loading...
