Port Security Mode - Cisco 300 Series Cli Manual

5
169
See the mac address-table static
attributes (type and time-to-live) definitions.
When the port security command enables the lock mode on a port all dynamic
addresses learned on the port are changed to permanent secure addresses.
When the port security command enables a mode on a port differing from the lock
mode all dynamic addresses learned on the port are deleted.
When the no port security command cancels a secure mode on a port all secure
addresses defined on the port are changed to dynamic addresses.
Additionally to set a mode, use the port security command to set an action that the
switch should perform on a frame which source MAC address cannot be learned.
Example
The following example forwards all packets to port gi 1 1 without learning
addresses of packets from unknown sources and sends traps every 100 seconds,
if a packet with an unknown source address is received.
switchxxxxxx(config)#
switchxxxxxx(config-if)#
switchxxxxxx(config-if)#
switchxxxxxx(config-if)#

5.23 port security mode

To configure the port security learning mode, use the port security mode Interface
(Ethernet, Port Channel) Configuration mode command. To restore the default
configuration, use the no form of this command.
Syntax
port security mode {max-addresses | lock | secure permanent | secure
delete-on-reset}
no port security mode
command for information about MAC address
interface gi14
port security mode lock
port security forward trap 100
exit
OL-32830-01 Command Line Interface Reference Guide
Address Table Commands