Port Security Configuration - Huawei Quidway S5600 Series Operation Manual
Hide thumbs
Also See for Quidway S5600 Series:
- Specifications (9 pages) ,
- Installation manual (73 pages)
Table of Contents
Advertisement
Operation Manual – Port Security & Port Binding
Quidway S5600 Series Ethernet Switches-Release 1510
Note:
When a port is working in autolearn or userlogin-without mode, its Voice VLAN
cannot be enabled.
When a port is working in mac-else-userlogin-secure-ext or
mac-else-userlogin-secure mode, the Intrusion Protection will be triggered after
both MAC authentication and 802.1x authentication for a packet are failed.
1.2 Port Security Configuration
1.2.1 Configuring Basic Port Security Attribute
Table 1-2 Basic port security configuration
Operation
Enter system view
Enable
security
Set OUI value for
user
authentication
Enable
sending
type-specific
messages
Enter Ethernet port
view
Set the security
mode of a port
Set the maximum
number of MAC
addresses that can
be accommodated
by a port
Set
transmission mode
system-view
port
port-security enable
port-security oui OUI-value
index index-value
port-security
the
{ addresslearned | intrusion |
of
dot1xlogon | dot1xlogoff |
trap
dot1xlogfailure | ralmlogon |
ralmlogoff | ralmlogfailure }*
interface
interface-number
port-security
mode
port-security
max-mac-count count-value
port-security
the
NTK
{
ntk-withbroadcasts
ntk-withmulticasts }
Huawei Technologies Proprietary
Chapter 1 Port Security Configuration
Command
trap
interface-type
port-mode
ntk-mode
ntkonly
|
|
1-4
Description
-
Required
Optional
Optional
By default, sending of trap
messages is disabled.
-
Required
Users
can
choose
optimal mode as necessary.
Optional
By default, there is no limit
on the number of MAC
addresses.
Required
By
default,
no
packet
transmission mode of the
NTK feature is set on the
port.
the
- Quick Links:
- Chapter 3 Product Overview
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
