Table of Contents
Advertisement
Configuring IP Source Guard
This example displays all inactive IP or MAC binding entries for all interfaces. The host was first learned
on GigabitEthernet 1/0/1 and then moved to GigabitEthernet 1/0/2. the IP or MAC binding entries
learned on GigabitEthernet1/ 0/1 are marked as inactive.
Switch# show ip device tracking all inactive
IP Device Tracking = Enabled
IP Device Tracking Probe Count = 3
IP Device Tracking Probe Interval = 30
---------------------------------------------------------------------
IP Address
---------------------------------------------------------------------
200.1.1.8
200.1.1.9
200.1.1.10
200.1.1.1
200.1.1.2
200.1.1.3
200.1.1.4
200.1.1.5
200.1.1.6
200.1.1.7
This example displays the count of all IP device tracking host entries for all interfaces:
Switch# show ip device tracking all count
Total IP Device Tracking Host entries: 5
---------------------------------------------------------------------
Interface
---------------------------------------------------------------------
Gi1/0/3
Configuring IP Source Guard for Static Hosts on a Private VLAN Host Port
You must globally configure the ip device tracking maximum limit-number interface configuration
Note
command globally for IPSG for static hosts to work. If you only configure this command on a port
without enabling IP device tracking globally or setting an IP device tracking maximum on that interface,
IPSG with static hosts will reject all the IP traffic from that interface. This requirement also applies to
IPSG with static hosts on a Layer 2 access port.
Beginning in privileged EXEC mode, follow these steps to configure IPSG for static hosts with IP filters
on a Layer 2 access port:
Command
Step 1
configure terminal
Step 2
vlan vlan-id1
Step 3
private-vlan primary
Step 4
exit
Step 5
vlan vlan-id2
Step 6
private-vlan isolated
Step 7
exit
Step 8
vlan vlan-id1
Step 9
private-vlan association 201
Cisco Catalyst Blade Switch 3130 and 3032 for Dell Software Configuration Guide
22-24
MAC Address
Vlan
Interface
0001.0600.0000
8
GigabitEthernet1/0/1
0001.0600.0000
8
GigabitEthernet1/0/1
0001.0600.0000
8
GigabitEthernet1/0/1
0001.0600.0000
8
GigabitEthernet1/0/1
0001.0600.0000
8
GigabitEthernet1/0/1
0001.0600.0000
8
GigabitEthernet1/0/1
0001.0600.0000
8
GigabitEthernet1/0/1
0001.0600.0000
8
GigabitEthernet1/0/1
0001.0600.0000
8
GigabitEthernet1/0/1
0001.0600.0000
8
GigabitEthernet1/0/1
Maximum Limit
5
Chapter 22
Configuring DHCP Features and IP Source Guard
STATE
INACTIVE
INACTIVE
INACTIVE
INACTIVE
INACTIVE
INACTIVE
INACTIVE
INACTIVE
INACTIVE
INACTIVE
Number of Entries
Purpose
Enter global configuration mode.
Enter VLAN configuration mode.
Establish a primary VLAN on a private VLAN port.
Exit VLAN configuration mode.
Enter configuration VLAN mode for another VLAN.
Establish an isolated VLAN on a private VLAN port.
Exit VLAN configuration mode.
Enter configuration VLAN mode.
Associate the VLAN on an isolated private VLAN port.
OL-13270-06
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
