Displaying and maintaining port security
To do...
Display port security configuration
information, operation
information, and statistics about
one or more ports or all ports
Display information about secure
MAC addresses
Display information about
blocked MAC addresses
Port security configuration examples
Configuring the autoLearn mode
Network requirements
See
Figure
75. Configure port GigabitEthernet 1/0/1 on Router, as follows:
Allow up to 64 users to access the port without authentication.
•
Permit the port to learn and add MAC addresses as secure MAC addresses.
•
After the number of secure MAC addresses reaches 64, the port stops learning MAC addresses. If
•
any frame with an unknown MAC address arrives, intrusion protection starts and the port shuts
down and stays silent for 30 seconds.
Figure 75 Network diagram for configuring the autoLearn mode
Configuration procedure
Configure port security.
1.
# Enable port security.
<Router> system-view
[Router] port-security enable
Command...
display port-security [ interface
interface-list ] [ | { begin |
exclude | include } regular-
expression ]
display port-security mac-address
security [ interface interface-type
interface-number ] [ vlan vlan-id ]
[ count ] [ | { begin | exclude |
include } regular-expression ]
display port-security mac-address
block [ interface interface-type
interface-number ] [ vlan vlan-id ]
[ count ] [ | { begin | exclude |
include } regular-expression ]
183
Remarks
Available in any view
Available in any view
Available in any view