| General Security Measures
C
25
HAPTER
Network Access (MAC Address Authentication)
network-access
link-detection link-
up-down
network-access
max-mac-count
E
XAMPLE
Console(config)#interface ethernet 1/1
Console(config-if)#network-access link-detection link-up action trap
Console(config-if)#
Use this command to detect link-up and link-down events. When either
event is detected, the switch can shut down the port, send an SNMP trap,
or both. Use the no form of this command to disable this feature.
S
YNTAX
network-access link-detection link-up-down
action [shutdown | trap | trap-and-shutdown]
no network-access link-detection
action - Response to take when port security is violated.
shutdown - Disable port only.
trap - Issue SNMP trap message only.
trap-and-shutdown - Issue SNMP trap message and disable
the port.
D
S
EFAULT
ETTING
Disabled
C
M
OMMAND
ODE
Interface Configuration
E
XAMPLE
Console(config)#interface ethernet 1/1
Console(config-if)#network-access link-detection link-up-down action trap
Console(config-if)#
Use this command to set the maximum number of MAC addresses that can
be authenticated on a port interface via all forms of authentication. Use the
no form of this command to restore the default.
S
YNTAX
network-access max-mac-count count
no network-access max-mac-count
count - The maximum number of authenticated IEEE 802.1X and
MAC addresses allowed. (Range: 0-1024; 0 for unlimited)
D
S
EFAULT
ETTING
1024
– 648 –