Configure A Port Security Interface - NETGEAR M4300 User Manual
Fully managed stackable switches
Hide thumbs
Also See for M4300:
- Installation manual (59 pages) ,
- Installation (2 pages) ,
- Software administration manual (688 pages)
Table of Contents
Advertisement
M4300 Series and M4300-96X Fully Managed Switches User Manual
Table 198. Port Security Violations
Field
Last Violation MAC
VLAN ID
Configure a Port Security Interface
A MAC address can be defined as allowable by one of two methods: dynamically or statically.
Both methods are used concurrently when a port is locked.
Dynamic locking implements a first arrival mechanism for port security. You specify how
many addresses can be learned on the locked port. If the limit was not reached, then a
packet with an unknown source MAC address is learned and forwarded normally. When the
limit is reached, no more addresses are learned on the port. Any packets with source MAC
addresses that were not already learned are discarded. You can effectively disable dynamic
locking by setting the number of allowable dynamic entries to zero.
Static locking allows you to specify a list of MAC addresses that are allowed on a port. The
behavior of packets is the same as for dynamic locking: only packets with an allowable
source MAC address can be forwarded.
To configure port security settings:
Launch a web browser.
1.
In the address field of your web browser, enter the IP address of the switch.
2.
The login window opens.
Enter the user name and password.
3.
The default admin user name is admin and the default admin password is blank, that is,
do not enter a password.
Click the Login button.
4.
The System Information page displays.
Select Security > Traffic Control > Port Security > Interface Configuration.
5.
Description
The source MAC address of the last packet that was discarded at a
locked port.
The VLAN ID corresponding to the last violation MAC address.
Manage Device Security
543
Advertisement
Table of Contents
Troubleshooting
