Using the Console Interface
893-00992-E
3-29
Table 3-10. MAC Address Security Configuration Screen Fields
Field Description
MAC Address Security
SNMP-Locked
When this field is set to Enabled, the MAC Address Security screens cannot
be modified using SNMP.
Default Disabled
Range Disabled, Enabled
MAC Address Security
When this field is set to Enabled, the software checks source MAC addresses
of packets that arrive on secure ports against MAC Addresses listed in the
MAC Address Security Table for allowed membership (see “
MAC Address
Security Table” on page 3-31). If the software detects any source MAC
address that is not an allowed member, the software registers a MAC intrusion
event.
Default Disabled
Range Disabled, Enabled
Partition Port on Intrusion
Detected
This field value determines how the switch reacts to an intrusion event. When
an intrusion event is detected (see MAC Address Security field description)
the specified switch port is set to Disabled (partioned from other switch ports).
When this field is set to:
• Disabled -- the port remains Enabled even if an intrusion event is detected.
• Enabled -- the port becomes Disabled, then automatically resets to
Enabled depending on the value set in the Partion Time field (see Partition
Time Field description).
• Forever -- the port becomes Disabled, and remains Disabled (partitoned).
The Partition Time field cannot be used to automatically reset the port to
Enabled if you set this field to Forever.
You can always manually set the port’s status field to Enabled using the Port
Configuration screen (see “Port Configuration” on 3-36).
Default Disabled
Range Disabled, Forever, Enabled
Partition Time
Determines the length of time a partioned port remains Disabled (see Partion
Port on Intrusion Detected field, above). This field is not operational when the
Partion Port on Intrusion Detected field is set to Forever.
Default 0 seconds (the value 0 indicates forever)
Range 0-65536 seconds
(continued)
To Next Page