Displaying Ip Source Guard Information - Cisco Catalyst 3750-X Software Configuration Manual

Hide thumbs Also See for Catalyst 3750-X:

Command reference manual (1244 pages)

Message manual (150 pages)

Getting started manual (22 pages)

Table of Contents

Configuring DHCP Features and IP Source Guard

This example shows how to enable IPSG for static hosts with IP filters on a private VLAN host port:

Switch(config)# vlan 200

Switch(config-vlan)# private-vlan primary

Switch(config-vlan)# exit

Switch(config)# vlan 201

Switch(config-vlan)# private-vlan isolated

Switch(config-vlan)# exit

Switch(config)# vlan 200

Switch(config-vlan)# private-vlan association 201

Switch(config-vlan)# exit

Switch(config)# int gigabitethernet1/0/3

Switch(config-if)# switchport mode private-vlan host

Switch(config-if)# switchport private-vlan host-association 200 201

Switch(config-if)# ip device tracking maximum 8

Switch(config-if)# ip verify source tracking

Switch# show ip device tracking all

IP Device Tracking = Enabled

IP Device Tracking Probe Count = 3

IP Device Tracking Probe Interval = 30

---------------------------------------------------------------------

---------------------------------------------------------------------

The output shows the five valid IP-MAC bindings that have been learned on the interface Fa0/3. For the

private VLAN cases, the bindings are associated with primary VLAN ID. So, in this example, the

primary VLAN ID, 200, is shown in the table.

Switch# show ip verify source

The output shows that the five valid IP-MAC bindings are on both the primary and secondary VLAN.