xStack DES-3500 Series Layer 2 Stackable Fast Ethernet Managed Switch User Manual
Port Security
A given port's (or a range of ports') dynamic MAC address
learning can be locked such that the current source MAC
addresses entered into the MAC address forwarding table
can not be changed once the port lock is enabled. Using the
Admin State pull-down menu to Enabled, and clicking
Apply can lock the port.
Port Security is a security feature that prevents unauthorized
computers (with source MAC addresses) unknown to the
Switch prior to locking the port (or ports) from connecting
to the Switch's locked ports and gaining access to the
network.
The following parameters can be set:
Parameter
State
From/To
Admin State
Max. Learning
Addr. (0-64)
Lock Address
Mode
Click Apply to implement changes made.
Figure 6- 45. Port Security Settings window
Description
Use the pull-down menu the enable or disable Port Security Trap/Log messages to be sent to
the Switch's log file and to the SNMP manager.
A consecutive group of ports may be configured starting with the selected port.
This pull-down menu allows you to enable or disable Port Security (locked MAC address table
for the selected ports).
The number of MAC addresses that will be in the MAC address-forwarding table for the
selected switch and group of ports.
This pull-down menu allows you to select how the MAC address table locking will be
implemented on the Switch, for the selected group of ports. The options are:
Permanent – The locked addresses will not age out after the aging timer expires.
•
Delete OnTimeout – The locked addresses will age out after the aging timer expires.
•
Delete On Reset – The locked addresses will not age out until the Switch has been
•
reset.
Port Security Trap/Log
Port Security Settings
69