Figure 8: Example 2; A New Device Is Added To The Network - Avaya ERS 3500 Technical Configuration Manual
Mac address based security
Hide thumbs
Also See for ERS 3500:
- Regulatory information (90 pages) ,
- Fundamentals (80 pages) ,
- Manual (60 pages)
Table of Contents
Advertisement
exit
mac-security enable
mac-security mac-address-table address 00.0f.b5.08.2f.bb port 1
mac-security mac-address-table address 00.0f.b5.08.32.9f port 2
mac-security mac-address-table address 00.c0.95.c8.ff.12 port 3
[...]
end
Note – The learned MAC addresses are now part of the config file for the switch and thus will be
preserved over a switch reboot
3.2.4
When a new device is added to the network
Figure 8: Example 2; a new device is added to the network
In the above diagram a new end station is added to the network on port 4. This will initially trigger a MAC
Security violation. The network administrator will then have to take action to (a) verify whether the new
end station should be allowed into the network and if so, (b) add the new end station's MAC to the
authorized list on the relevant port. In this example, the network administrator does not like typing in MAC
addresses so he will use the learning functionality to achieve the same.
Verify log file on switch
Avaya-ERS-Switch# show log
Type Time
---- ----------------------------- ---- --- -------
I
01:01:07:23
I
01:01:07:28
I
01:01:07:28
November 2010
Idx
Src Message
3
Link Up Trap for Port: 4
4
Bay Secure intruder MAC 00-c0-95-c8-9a-62
port 4
5
Trap:
s5EtrNewSbsMacAccessViolation
Avaya Inc. – Internal Distribution
avaya.com
43
Hide quick links:
Advertisement
Table of Contents
