Enabling And Configuring Port Security - Cisco Catalyst 2975 Software Configuration Manual
Ios release 12.2(55)se
Hide thumbs
Also See for Catalyst 2975:
- Hardware installation manual (62 pages) ,
- Brochure (19 pages) ,
- Getting started manual (17 pages)
Table of Contents
Advertisement
Chapter 23
Configuring Port-Based Traffic Control
3. A VLAN Query Protocol (VQP) port configured with the switchport access vlan dynamic interface configuration command.
4. You must set the maximum allowed secure addresses on the port to two plus the maximum number of secure addresses
Enabling and Configuring Port Security
Beginning in privileged EXEC mode, follow these steps to restrict input to an interface by limiting and
identifying MAC addresses of the stations allowed to access the port:
Command
Step 1
configure terminal
Step 2
interface interface-id
Step 3
switchport mode {access | trunk}
Step 4
switchport voice vlan vlan-id
Step 5
switchport port-security
Step 6
switchport port-security
[maximum value [vlan {vlan-list |
{access | voice}}]]
OL-19720-02
allowed on the access VLAN.
Purpose
Enter global configuration mode.
Specify the interface to be configured, and enter interface configuration
mode.
Set the interface switchport mode as access or trunk; an interface in the
default mode (dynamic auto) cannot be configured as a secure port.
Enable voice VLAN on a port.
vlan-id—Specify the VLAN to be used for voice traffic.
Enable port security on the interface.
(Optional) Set the maximum number of secure MAC addresses for the
interface. The maximum number of secure MAC addresses that you can
configure on a switch stack is set by the maximum number of available MAC
addresses allowed in the system. This number is the total of available MAC
addresses, including those used for other Layer 2 functions and any other
secure MAC addresses configured on interfaces.
(Optional) vlan—set a per-VLAN maximum value
Enter one of these options after you enter the vlan keyword:
vlan-list—On a trunk port, you can set a per-VLAN maximum value on
•
a range of VLANs separated by a hyphen or a series of VLANs separated
by commas. For nonspecified VLANs, the per-VLAN maximum value is
used.
•
access—On an access port, specify the VLAN as an access VLAN.
voice—On an access port, specify the VLAN as a voice VLAN.
•
Note
The voice keyword is available only if a voice VLAN is configured
on a port and if that port is not the access VLAN. If an interface is
configured for voice VLAN, configure a maximum of two secure
MAC addresses.
Catalyst 2975 Switch Software Configuration Guide
Configuring Port Security
23-13
- Quick Links:
- Management Options
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
