S
ECURE
S
HELL
C
OMMANDS
3-53
Port Security
Use this command to enable and configure port security on a port. Use the
no form to disable port security and reset the maximum addresses to the
default.
Syntax
port security [max-mac-count address-number]
no port security [max-mac-count]
address-number - Sets the maximum number of MAC addresses that
can be learned on a port. (Range: 0 - 20)
Default Setting
Status: Disabled
Maximum Addresses: 0
Command Mode
Interface Configuration (Ethernet)
Command Usage
• If you enable port security on a specified port, the switch will
dynamically learn MAC addresses until the specified number has been
reached and then stop. Only incoming traffic with source addresses
already stored in the dynamic or static address table will be accepted.
• To use port security, specify a maximum number of addresses to allow
on the port and then let the switch dynamically learn the <source MAC
address, VLAN> pair for frames received on the port. You can also
manually add secure addresses to the port with the
mac-address-table static command.
• First use the port security max-mac-count command to set the
number of addresses, and then use the port security command to
enable security on the port.
•Use the no port security max-mac-count command to disable
port security and reset the maximum number of addresses to the
default.
To Next Page
Loading...
Need help?
General
