Table of Contents
Advertisement
–
Broadcast Only — Counts only Broadcast traffic.
•
Broadcast Rate Threshold — The maximum rate (packets per second) at which unknown
packets are forwarded.
–
For FE ports, the rate is 70 - 100,000 Kbps.
–
For GE ports, the rate is 35,000 - 100,000 Kbps.
Defining Port Security
Network security can be increased by limiting access on a specific port only to users with specific
MAC addresses. The MAC addresses can be dynamically learned or statically configured. Locked
port security monitors both received and learned packets that are received on specific ports. Access
to the locked port is limited to users with specific MAC addresses. These addresses are either
manually defined on the port, or learned on that port up to the point when it is locked. When a
packet is received on a locked port, and the packet source MAC address is not tied to that port
(either it was learned on a different port, or it is unknown to the system), the protection mechanism is
invoked, and can provide various options. Unauthorized packets arriving at a locked port are
either:
•
Forwarded
•
Discarded with no trap
•
Discarded with a trap
•
Cause the port to be shut down.
Locked port security also enables storing a list of MAC addresses in the configuration file. The MAC
address list can be restored after the device has been reset. Disabled ports are activated from the
Port Management page.
NOTE: To configure port lock, 802.1x multiple host mode
must be enabled.
Chapter 5: Configuring Device Security
Defining Traffic Control
SFE1000P Gigabit Ethernet Switch Reference Guide
Chapter
5
40
Hide quick links:
Advertisement
Table of Contents
