Saturday, May 10, 2014

Configuring Port Security

Setting Maximum Number of Secure Addresses
This example shows how to enable port security on the Fast Ethernet interface 0/1 and how to set the maximum number of secure addresses to 3. The violation mode is the default, and no secure MAC addresses are configured.
Switch# configure terminal
Switch(config)# interface fa0/1
Switch(config-if)# switchport mode access
Switch(config-if)# switchport port-security
Switch(config-if)# switchport port-security maximum 3
Switch(config-if)# switchport port-security mac-address sticky
Setting a Violation Mode
Switch(config-if)# switchport port-security violation restrict
Setting the Aging Timer
Switch(config-if)# switchport port-security aging time 120
Configuring a Secure MAC Address
Switch(config-if)# switchport port-security mac-address 0000.0000.0003 (Static secure MAC)
Configuring Sticky Port Security

Switch(config-if)# switchport port-security mac-address sticky

No comments:

Post a Comment