The Switch's port security commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in
the following table.
Command
config port_security ports
delete port_security_entry
clear port_security_entry
show port_security
enable port_security trap_log
disable port_security trap_log
Each command is listed, in detail, in the following sections.
config port_security ports
Purpose
Syntax
Description
Parameters
Restrictions
Example usage:
To configure the port security:
DAS-3600 Series Ethernet over VDSL Switch CLI Reference Manual
Parameters
[ <portlist>| all ] [{admin_state [enable | disable] | max_learning_addr
<max_lock_no 0-512> | lock_address_mode [Permanent | Deleteontimeout |
Deleteonreset ] } ]
vlan name <vlan_name 32> mac_address <macaddr> port <port>
port [<portlist>
port [<portlist>
Used to configure port security settings.
config port_security ports [ <portlist>| all ] [ { admin_state [enable | disable] |
max_learning_addr <max_lock_no 0-512> | lock_address_mode [ Permanent |
Deleteontimeout | Deleteonreset ] } ]
This command allows for the configuration of the port security feature. Only the ports listed in
the <portlist> are affected.
portlist − Specifies a port or range of ports to be configured.
all − Configure port security for all ports on the Switch.
admin_state [enable | disable] – Enable or disable port security for the listed ports.
max_learning_addr <max_lock_no 0-512> − Use this to limit the number of MAC addresses
dynamically listed in the FDB for the ports.
lock_address_mode [Permanent | DeleteOnTimout | DeleteOnReset] – Indicates the method
of locking addresses. The user has three choices:
permanent – The locked addresses will not age out after the aging timer expires.
DeleteOnTimeout – The locked addresses will age out after the aging timer expires.
DeleteOnReset – The locked addresses will not age out until the Switch has been restarted.
Only Administrator and Operator-level users can issue this command.
P
ORT
293
S
C
ECURITY
OMMANDS
33