EasyManua.ls Logo

Ruijie RG-S2900G-E Series - Page 630

Ruijie RG-S2900G-E Series
943 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Configuration Guide Port-based Flow Control Configuration
Ruijie(config-if)# switchport port-security
Ruijie(config-if)# switchport port-security binding 192.168.12.202
Ruijie(config-if)# end
The example below describes how to configure a secure address for interface gigabitethernet 0/3 and
bind it with an source IP+MAC address: 192.168.12.202, : 00d0.f800.073c.
Ruijie# configure terminal
Enter configuration commands, one per line. End with CNTL/Z.
Ruijie(config)# interface gigabitethernet 0/3
Ruijie(config-if)# switchport mode access
Ruijie(config-if)# switchport port-security
Ruijie(config-if)# switchport port-security binding 00d0.f800.073c vlan 1 192.168.12.202
Ruijie(config-if)# end
Note
For the packets that correspond to the IP+MAC binding and IP binding,
they can be forwarded on the condition that the source MAC address
must be the secure address at the same time. For the dynamic secure
address, before adding the secure address to the secure address
table, any packets that correspond to the secure addrss binding or IP
binding can not be forwarded.
Configuration of Aging Time for Secure Addresses
You can configure the aging time for all the secure addresses on an interface. To enable this function,
you need to set the maximum number of secure addresses. In this way, you can make the device
automatically add/remove the secure addresses to/from the interface.
In the interface configuration mode, configure the aging time for secure addresses by using the
following command:
Command
Function
Ruijie(config-if)#switchport port-security
aging{static | time time }
static: When this keyword is added, the aging
time will be applied to both the manually
configured secure address and automatically
learnt addresses. Otherwise, it is applied only to
the automatically learnt addresses.
time: indicates the aging time for the secure
address on this port. Its range is 0-1440 and unit
is Minute. If you set it to be 0, the aging function
actually is disabled. The aging time is the
absolute time, which means that an address will
be deleted automatically after the Time specified
expires after the address becomes the secure
address of the port. The default value of Time is
0.

Table of Contents

Related product manuals