304 Rockwell Automation Publication 1783-UM007G-EN-P - February 2017
Chapter 7 Configure Switch Features
Static Secure MAC Address (MAC ID)
The other method of limiting MAC IDs is to configure statically one or more
MAC IDs for a port by defining them via port security with Device Manager.
These addresses become part of the saved configuration of the switch. This
method provides strong security. However, if you replace any devices that are
connected to the port, you must reconfigure the MAC IDs because the new
devices have different MAC IDs than the previous devices.
For Stratix 8000/8300 switches, you can configure the static secure method
only with the Logix Designer application. Configuration for this method is not
available with Device Manager.
Security Violations
It is a security violation when one of these situations occurs:
• The maximum number of secure MAC addresses that have been
configured for a port are in the address table. A station whose MAC
address is not in the address table attempts to access the interface.
• An address that is learned or configured on one secure interface is seen
on another secure interface in the same VLAN.
When a violation occurs, the port goes into the Restrict mode. In this mode,
packets with unknown source addresses are dropped and you are notified that a
security violation has occurred. An SNMP trap is sent, a syslog message is
logged, and the violation counter increments.
Configure Port Security via Device Manager
From the Configure menu, choose Port Security.
To Next Page
Loading...
Need help?
General
