3Com 4200G 12-Port Configuration Manual page 103
4200g series switch
Hide thumbs
Also See for 4200G 12-Port:
- Configuration manual (730 pages) ,
- Getting started manual (104 pages) ,
- Quick reference manual (43 pages)
Table of Contents
Advertisement
Configure Security MAC
Table 66 Configure port security (Continued)
Operation
Set the security mode
of a port
Set the maximum
number of MAC
addresses that can be
accommodated by a
port
Set the NTK
transmission mode
Bind the MAC and IP
addresses of a legal
user to a specified port
Set the Intrusion
Protection mode
Return to system view
Set the timer for
temporarily disabling a
port
The time set by the port-security timer disableport timer command is the same as
the time set for temporarily disabling a port while executing the port-security
intrusion-mode command under disableport-temporarily mode.
With the port security enabled, a device has the following restrictions on the 802.1x
authentication and MAC address authentication in order to prevent conflictions.
1 The access control mode (set by the dot1x port-control command) is automatically set
to auto.
2 The dot1x, dot1x port-method, dot1x port-control, and mac-authentication
commands are inapplicable.
Refer to the 802.1x module of S4200G S4200G Series Ethernet Switches
■
Operation Manual for details on 802.1x authentication.
You cannot add a port that configured port security feature to a link aggregation
■
group.
You cannot configure the port-security port-mode mode command on a port if the
■
port is in a link aggregation group
Security MAC is a special type MAC address and similar with static MAC address. One
Security MAC can only be added to one port in the same VLAN. Using this feature,
you can bind a MAC address with a port in the same VLAN.
Command
port-security port-mode mode
port-security max-mac-count count-value Optional
port-security ntk-mode { ntkonly |
ntk-withbroadcasts |
ntk-withmulticasts }
am user-bind mac-addr mac-address
ip-addr ip-address [ interface
interface-type interface-number ]
port-security intrusion-mode
{ disableport | disableport-temporarily |
blockmac }
quit
port-security timer disableport timer
Port Security Configuration
Description
Required
Users can choose the
optimal mode as
necessary.
By default, there is no
limit on the number of
MAC addresses.
Required
No specific transmission
mode is configured by
default.
Optional
Users need to specify the
ports to bind while
executing this command
in system view, whereas
in Ethernet port view, this
command applies to the
current port only.
Required
No specific intrusion
mode is configured by
default.
—
Optional
Defaults to 20 seconds.
89
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
