00-C0-95-C8-9A-62
30 Dynamic Port:10
00-C0-95-C8-FF-12
30 Dynamic Port: 8
00-E0-16-57-6E-81
30 Dynamic Trunk:1
Note – Servers are now using Standby NIC.
3.3.5
Testing violations
3.3.5.1 Unauthorized device takes server Standby NIC connection
Figure 11: Example 3; unauthorized device takes server Standby NIC connection
The unauthorized device is not able to send any traffic into the network; however it is still able to see
broadcast and unknown traffic flowing in the VLAN; if this is undesired the MAC Security should be
configured to partition the port upon an access violation.
Verify log file on switch
Avaya-ERS-Switch# show log
Type Time
---- ----------------------------- ---- --- -------
I
01:05:54:13
I
01:05:54:17
I
01:05:54:21
I
01:05:54:21
November 2010
Idx
Src Message
1
Link Down Trap for Port: 8
2
Link Up Trap for Port: 8
3
Bay Secure intruder MAC 00-e0-4c-77-67-01
port 8
4
Trap:
s5EtrNewSbsMacAccessViolation
Avaya Inc. – Internal Distribution
avaya.com
61