Learned Port Security Overview
Learned Port Security Overview
Learned Port Security (LPS) provides a mechanism for controlling network device access on one or more
switch ports. Configurable LPS parameters allow the user to restrict the source learning of host MAC
addresses to:
A specific amount of time in which the switch allows source learning to occur on all LPS ports.
•
A maximum number of learned MAC addresses allowed on the port.
•
A list of configured authorized source MAC addresses allowed on the port.
•
Additional LPS functionality allows the user to specify how the LPS port handles unauthorized traffic. The
following two options are available for this purpose:
Block only traffic that violates LPS port restrictions; authorized traffic is forwarded on the port.
•
Disable the LPS port when unauthorized traffic is received; all traffic is stopped and a port reset is
•
required to return the port to normal operation.
LPS functionality is supported on the following 10/100 and Gigabit Ethernet port types:
Fixed (non-mobile)
•
Mobile
•
802.1Q tagged
•
Authenticated
•
The following port types are not supported:
Link aggregate
•
Tagged (trunked) link aggregate
•
page 3-4
OmniSwitch 6624/6648 Network Configuration Guide
Configuring Learned Port Security
April 2004