Enabling/Disabling Learned Port Security - Alcatel-Lucent OmniSwitch 6850-48 Network Configuration Manual
Software release 6
Hide thumbs
Also See for OmniSwitch 6850-48:
- Cli reference manual (3706 pages) ,
- Management manual (312 pages) ,
- Hardware user's manual (188 pages)
Table of Contents
Advertisement
Configuring Learned Port Security
Configuring Learned Port Security
This section describes how to use Command Line Interface (CLI) command to configure Learned Port
Security (LPS) on a switch. See the
tutorial on configuring LPS.
Configuring LPS involes the following procedures:
•
Enabling LPS for one or more switch ports. This procedure is described in
Learned Port Security" on page
•
Configuring the source learning time window during which MAC addresses are learned. This proce-
dure is described in
•
Configuring the maximum number of bridged MAC addresses allowed on an LPS port. This procedure
is described in
"Configuring the Number of Bridged MAC Addresses Allowed" on page
•
Configuring the maximum number of filtered MAC addresses allowed on an LPS port. This procedure
is describe in
"Configuring the Number of Filtered MAC Addresses Allowed" on page 3-10
•
Configuring one or more static authorized MAC addresses. This procedure is described in
ing Authorized MAC Addresses" on page
•
Specifying whether or not an LPS port shuts down all traffic or only restricts traffic when an unautho-
rized MAC address is received on the port. This procedure is described in
Violation Mode" on page
Enabling/Disabling Learned Port Security
By default, LPS is disabled on all switch ports. To enable LPS on a port, use the
For example, the following command enables LPS on port 1 of slot 4:
-> port-security 4/1 enable
To enable LPS on multiple ports, specify a range of ports or multiple slots. For example:
-> port-security 4/1-5 enable
-> port-security 5/12-20 6/10-15 enable
Note that when LPS is enabled on an active port, all MAC addresses learned on that port prior to the time
LPS was enabled are cleared from the source learning MAC address table.
To disable LPS on a port, use the port-security command with the disable parameter. For example, the
following command disables LPS on a range of ports:
-> port-security 5/21-24 6/1-4 disable
To disable all the LPS ports on a chassis, use the port-security chassis disable command, as shown:
-> port-security chassis disable
When LPS is disabled on a port, MAC address entries for that port are retained in the LPS table. The next
time LPS is enabled on the port, the same LPS table entries are again active. If there is a switch reboot
before the switch configuration is saved, however, dynamic MAC address entries are discarded from the
table.
OmniSwitch AOS Release 6 Network Configuration Guide
"Sample Learned Port Security Configuration" on page 3-3
3-7.
"Configuring a Source Learning Time Limit" on page
3-10.
3-11.
Configuring Learned Port Security
3-8.
"Selecting the Security
September 2009
for a brief
"Enabling/Disabling
3-9.
"Configur-
port-security
command.
page 3-7
Hide quick links:
Advertisement
Table of Contents
Need help?
Do you have a question about the OmniSwitch 6850-48 and is the answer not in the manual?