TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide
port security
The port security Interface Configuration mode command locks the port, thereby, blocking unknown traffic and
preventing the port from learning new addresses. To return to the default configuration, use the no form of this
command.
Syntax
port security [forward | discard | discard-shutdown] [trap seconds]
no port security
Parameters
•
forward — Forwards packets with unlearned source addresses, but does not learn the address.
•
discard — Discards packets with unlearned source addresses. This is the default if no option is indicated.
•
discard-shutdown — Discards packets with unlearned source addresses. The port is also shut down.
•
seconds — Sends SNMP traps and defines the minimum amount of time in seconds between consecutive
traps. (Range: 1-1000000)
Default Configuration
This setting is disabled.
Command Mode
Interface Configuration (Ethernet, port-channel) mode
User Guidelines
There are no user guidelines for this command.
Example
In this example, port 1 forwards all packets without learning addresses of packets from unknown sources and
sends traps every 100 seconds if a packet with an unknown source address is received.
Console(config)# interface ethernet e1
Console(config-if)# port security forward trap 100
Page 37