Configuring Port Security (J-Web Procedure) - Juniper JUNOS OS 10.3 - SOFTWARE Manual

Related
Documentation

Configuring Port Security (J-Web Procedure)

Copyright © 2010, Juniper Networks, Inc.
[edit ethernet-switching-options secure-access-port]
user@switch# set interface all allowed-mac 00:05:85:3A:82:80
user@switch# set interface all allowed-mac 00:05:85:3A:82:81
user@switch# set interface all allowed-mac 00:05:85:3A:82:83
Limit the number of times a MAC address can move from its original interface in one
5.
second—for example, set a MAC move limit of
exceeded:
On a single VLAN (here, the VLAN is
[edit ethernet-switching-options secure-access-port]
user@switch# set vlan employee–vlan mac-move-limit 5 action drop
On all VLANs:
[edit ethernet-switching-options secure-access-port]
user@switch# set vlan all mac–move-limit 5 action drop
Configure a trusted DHCP server on an interface (here, the interface is
6.
[edit ethernet-switching-options secure-access port]
user@switch# set interface ge–0/0/8 dhcp-trusted
Configuring Port Security (J-Web Procedure) on page 2907
Configuring Autorecovery From the Disabled State on Secure or Storm Control Interfaces
(CLI Procedure) on page 2796
Example: Configuring Port Security, with DHCP Snooping, DAI, MAC Limiting, and MAC
Move Limiting, on an EX Series Switch on page 2849
Example: Configuring DHCP Snooping, DAI , and MAC Limiting on an EX Series Switch
with Access to a DHCP Server Through a Second Switch on page 2873
Monitoring Port Security on page 2933
Port Security for EX Series Switches Overview on page 2825
To configure port security on an EX Series switch using the J-Web interface:
Select >
1. Configure Security
The VLAN List table lists all the VLAN names, VLAN identifiers, port members, and
port security VLAN features.
The table lists all the ports and indicates whether security features have
Interface List
been enabled on the ports.
Chapter 95: Configuring Port Security
with an action of
5
employee-vlan ):
> .
Port Security
if the limit is
drop
ge-0/0/8 ):
2907