Configuring Port Security Features - H3C S3100 Series Operation Manual
H3c s3100 series ethernet switches operation manual
Hide thumbs
Also See for S3100 Series:
- Command manual (1244 pages) ,
- Installation manual (94 pages) ,
- Operation manual (32 pages)
Table of Contents
Advertisement
If the port-security port-mode mode command has been executed on a port, none of the following can
be configured on the same port:
Maximum number of MAC addresses that the port can learn
Reflector port for port mirroring
Link aggregation
Configuring Port Security Features
Configuring the NTK feature
Follow these steps to configure the NTK feature:
To do...
Enter system view
Enter Ethernet port view
Configure the NTK feature
Configuring intrusion protection
Follow these steps to configure the intrusion protection feature:
To do...
Enter system view
Enter Ethernet port view
Set the corresponding action to
be taken by the switch when
intrusion protection is triggered
Return to system view
Set the timer during which the
port remains disabled
The port-security timer disableport command is used in conjunction with the port-security
intrusion-mode disableport-temporarily command to set the length of time during which the port
remains disabled.
Use the command...
system-view
interface interface-type
interface-number
port-security ntk-mode
{ ntkonly |
ntk-withbroadcasts |
ntk-withmulticasts }
Use the command...
system-view
interface interface-type
interface-number
port-security intrusion-mode
{ blockmac | disableport |
disableport-temporarily }
quit
port-security timer disableport
timer
1-7
Remarks
—
—
Required
By default, NTK is disabled on
a port, namely all frames are
allowed to be sent.
Remarks
—
—
Required
By default, intrusion
protection is disabled.
—
Optional
20 seconds by default
Advertisement
Chapters
Table of Contents
Troubleshooting
