Port Mirroring; Port Security; Mac Address Learn Limits; Ieee 802.1X - Allied Telesis SwitchBlade x908 Series Software Reference Manual
Switchblade x908/x900 series alliedware plus operating system software reference for version 5.3.1
Hide thumbs
Also See for SwitchBlade x908 Series:
- Hardware reference manual (65 pages) ,
- Software manual (56 pages) ,
- Installation and safety manual (55 pages)
Table of Contents
Advertisement
Port Mirroring
Port mirroring enables traffic being received and transmitted on a switch port to be sent to
another switch port, the mirror port, usually for the purposes of capturing the data with a
protocol analyzer.
The mirror port is the only switch port that does not belong to a VLAN, and therefore does
not participate in any other switching. Before the mirror port can be set, it must be removed
from all trunk groups and all VLANs except the default VLAN. The following example sets
mirroring on ports 1.0.2 and 1.0.5 for both incoming and outgoing data.
Note:
To configure port 1. 0. 2 to mirror port 1. 0. 5
awplus#configure terminal
awplus(config)#interface port1.0.2
awplus(config-if)#mirror interface
port1.0.5 direction both
Port Security
The port security features provide control over the stations connected to each switch port.
These comprise:
■
■
MAC Address Learn Limits
MAC address limiting is applied using the
enabled on a port, the switch will learn MAC addresses up to a user-defined limit from 1 to
256, then lock out all other MAC addresses. One of the following options can be specified for
the action taken when an unknown MAC address is detected on a locked port:
■
■
■
IEEE 802.1X
IEEE 802.1X restricts unauthenticated devices from connecting to the switch. After
authentication is successful, traffic is allowed through the switch. For more information see
Chapter 52, 802.1X
C613-50007-01 REV B
Due to the internal hardware properties of the switch, frames that are destined to
leave the mirrored port untagged (i.e. will have their VLAN tag removed on egress)
will be received by the mirror port with the tag retained. Consequently, if frames
were being transmitted by the mirror port (into the network) at wire speed, then the
mirror port might be unable to accept all the frames supplied to it.
MAC address learn limits
IEEE 802.1X
Discard the packet and take no further action.
Discard the packet and notify management with an SNMP trap.
Discard the packet, notify management with an SNMP trap and disable the port.
Configuration.
Software Reference for SwitchBlade® x908, x900 and x600 Series Switches
TM
AlliedWare Plus
Operating System - Software Version 5.3.1
Enter the config terminal mode
Enter the config interface mode for port
1.0.2
Configure this port to mirror port 1. 0. 5
switchport port-security command on page
Switching Introduction
15.40. If
14.17
- Quick Links:
- Thrash-Limiting
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
