Configuring The Userloginwithoui Mode - 3Com S7906E Configuration Manual

S7900e family release 6600 series

Hide thumbs Also See for S7906E:

Command reference manual (2327 pages)

Getting started manual (155 pages)

Datasheet (8 pages)

Table of Contents

port-security max-mac-count 64

port-security port-mode autolearn

port-security mac-address security 0002-0000-0015 vlan 1

port-security mac-address security 0002-0000-0014 vlan 1

port-security mac-address security 0002-0000-0013 vlan 1

port-security mac-address security 0002-0000-0012 vlan 1

port-security mac-address security 0002-0000-0011 vlan 1

Issuing the display port-security interface command after the number of MAC addresses learned by

the port reaches 64, you will see that the port security mode has changed to secure. When any frame

with a new MAC address arrives, intrusion protection is triggered and you will see trap messages as

2 03:15:55:871 2000 Switch PORTSEC/1/VIOLATION:Traph3cSecureViolation

An intrusion occurs!

IfIndex: 9437207

Port: 9437207

MAC Addr: 00:0F:1F:86:32:32

IfAdminStatus: 1

In addition, you will see that the port security feature has disabled the port if you issue the following

[Switch-GigabitEthernet2/0/1] display interface gigabitethernet 2/0/1

GigabitEthernet2/0/1 current state:

IP Packet Frame Type: PKTFMT_ETHNT_2, Hardware Address: 000f-cb00-5558

Description: GigabitEthernet2/0/1 Interface

The port should be re-enabled 30 seconds later.

[Switch-GigabitEthernet2/0/1] display interface gigabitethernet 2/0/1

GigabitEthernet2/0/1 current state: UP

IP Packet Frame Type: PKTFMT_ETHNT_2, Hardware Address: 000f-cb00-5558

Description: GigabitEthernet2/0/1 Interface

Now, if you manually delete several secure MAC addresses, the port security mode of the port will be

restored to autoLearn, and the port will be able to learn MAC addresses again.