Dot1X Violation-Mode - Cisco ME 3400 Command Reference Manual

Chapter 2 Cisco ME 3400 Ethernet Access Switch Cisco IOS Commands

dot1x violation-mode

Use the dot1x violation-mode interface configuration command to configure the violation modes that
occur when a new device connects to a port or when a new device connects to a port after the maximum
number of devices are connected to that port.
Syntax Description
shutdown
restrict
protect
Defaults By default dot1x violation-mode protect is enabled.
Command Modes Interface configuration
Command History Release
12.2(46)SE
Examples This example shows how to configure an IEEE 802.1x-enabled port as error disabled and to shut down
when a new device connects to the port:
Switch(config-if)# dot1x violation-mode shutdown
This example shows how to configure an IEEE 802.1x-enabled port to generate a system error message
and change the port to restricted mode when a new device connects to the port:
Switch(config-if)# dot1x violation-mode restrict
This example shows how to configure an IEEE 802.1x-enabled port to ignore a new connected device
when it is connected to the port:
Switch(config-if)# dot1x violation-mode protect
You can verify your settings by entering the show dot1x [interface interface-id] privileged EXEC
command.
Related Commands Command
show dot1x
OL-9640-10
dot1x violation-mode {shutdown | restrict | protect}
no dot1x violation-mode
Error disables the port or the virtual port on which a new unexpected MAC
address occurs.
Generates a syslog error when a violation error occurs.
Silently discards packets from any new MAC addresses. This is the default
setting.
Modification
This command was introduced.
[interface interface-id]
Description
Displays IEEE 802.1x status for the specified port.
Cisco ME 3400 Ethernet Access Switch Command Reference
dot1x violation-mode
2-103