12-3.2 Status
This section shows the Port Security status. Port Security is a module with no direct
configuration. Configuration comes indirectly from other modules - the user modules. When a
user module has enabled port security on a port, the port is set-up for software-based
learning. In this mode, frames from unknown MAC addresses are passed on to the port
security module, which in turn asks all user modules whether to allow this new MAC address to
forward or block it. For a MAC address to be set in the forwarding state, all enabled user
modules must unanimously agree on allowing the MAC address to forward. If only one
chooses to block it, it will be blocked until that user module decides otherwise. The status page
is divided into two sections - one with a legend of user modules and one with the actual port
status.
Web Interface
To displays a Port Security Status in the web interface:
1. Click Security, Port Security, and Status.
2. Check “Auto-refresh” if desired.
3. Click “Refresh” to refresh the port detailed statistics.
4. Click the port number to see the status for this particular port.
Figure 12-3.2: Port Security Status
Parameter descriptions:
Port: The port number for which the status applies. Click the port number to see the status for this
particular port.
State: Shows the current state of the port. It can take one of four values:
Disabled: No user modules are currently using the Port Security service.
Ready: The Port Security service is in use by at least one user module, and is awaiting frames from
unknown MAC addresses to arrive.
Limit Reach: The Port Security service is enabled by at least the Limit Control user module, and
that module has indicated that the limit is reached and no more MAC addresses should be taken
in.
Shutdown: The Port Security service is enabled by at least the Limit Control user module, and that
module has indicated that the limit is exceeded. No MAC addresses can be learned on the port
until it is administratively re-opened on the Limit Control configuration Web-page.
MAC Count (Current, Limit): The two columns indicate the number of currently learned MAC
addresses (forwarding as well as blocked) and the maximum number of MAC addresses that can be
learned on the port, respectively. If no user modules are enabled on the port, the Current column will
show a dash (-).
To Next Page
Loading...