Security and authentication
11.5 Port Access Control List Locked Ports
11.5
Port Access Control List Locked Ports
With the Port Access Control List Locked Ports, MAC addresses that do not age are
collected on a port after the
converted to static entries in the address list and the aging is reactivated for all the
addresses that follow.
If the learning of addresses on this port is then disabled, data packets are only forwarded to
the static addresses entered in the table.
This section describes commands relevant for the configuration of this function.
11.5.1
show lock port
Description
This command shows whether or not the learning of MAC entries is enabled or locked on an
interface.
Requirement
You are in the User EXEC mode or in the Privileged EXEC mode.
The command prompt is as follows:
cli>
Syntax
Call up the command with the following parameters:
show lock port [< ifXtype >< ifnum >]
The parameters have the following meaning:
Parameters
ifXtype
ifnum
For information on names of addresses and interfaces, refer to the section "Addresses and
interface names (Page 30)".
If you do not select an interface, the configuration of all interfaces is displayed.
Result
The configuration of the interface for the learning of MAC entries is displayed.
514
or
cli#
Description
Type or speed of the interface
Slot no. and port no. of the interface
command. With the
start
SCALANCE XM-400/XR-500 Command Line Interface
Configuration Manual, 05/2014, C79000-G8976-C252-07
command, these addresses are
stop
Range of values
•
gigabitethernet
•
extreme-ethernet
Enter a valid interface name