Specifications
8-176 set switch port Rapier Switch Software Reference
Software Release 2.7.3
C613-03098-00 REV A
with which the frames are associated. Untagged frames admitted by the
acceptable parameter are admitted since they have the numerical VLAN
Identifier (VID) of the VLAN for which the port is an untagged member. If off
is specified, Ingress Filtering is disabled, and no frames are discarded by this
part of the Ingress Rules. The default is off. Ingress filtering is supported only
for ports that are members of trunk groups on Rapier i and Rapier G Series
switches.
On the Rapier i Series switches only, the ingresslimit parameter specifies the
maximum bandwidth for traffic ingressing a specific port in kbps (10/100
Mbps ports) or Mbps (Gigabit ports). If none or 0 (zero) is specified, ingress
limiting is disabled for the specified port. For 10/100 Mbps ports the input
value (64..127000) in kbps is rounded up to the nearest 64kbps if below 1000,
otherwise it is rounded up to the nearest 1000 (or 1 Mbps). For Gigabit ports
the input value (8..1016) in Mbps is rounded up to the nearest 8 Mbps. The
default is none.
The intrusionaction parameter specifies the action taken when the port
receives packets from addresses that are not part of the learned list of addresses
as specified by the learn parameter. If discard is specified, packets are
discarded that come from MAC addresses not on the port’s learn list. If trap is
specified, these packets are discarded and an SNMP trap is generated. If
disable is specified, the packet is discarded the first time it is received, an
SNMP trap is generated, and the port is disabled. To re-enable the port, disable
the Port Security function on the port. The default is discard.
The learn parameter specifies whether the security feature of limiting the
number of MAC addresses learned on this port is enabled. If none or zero is
specified, all MAC addresses are learned on this port and the Port Security
function is disabled. When a port has been automatically disabled by the
switch's port security, setting the Learn parameter to 0 (zero) re-enables it. If a
number from 1 to 256 is specified, the switch stops learning MAC addresses on
this port when the number of MAC addresses is reached, and the port is
locked. If the learn parameter is set to a value lower than the number of MAC
addresses currently learned, then the port is unlocked if previously locked, all
learned MAC addresses are cleared from the forwarding database for the port,
and learning restarts. Packets from other addresses after this time are handled
as intrusion packets (see the intrusionaction parameter). The default is none.
Learned addresses on locked ports can be saved as part of the switch
configuration and become part of the configuration after a power cycle by
using the create config command on page 5-22 of Chapter 5, Managing
Configuration Files and Software Versions. If the configuration is not saved
when there is a locked list for a port, the learning process begins again after the
router is restarted.
The mclimit parameter specifies a limit on the rate of reception of multicast
packets for the port. The value of this parameter represents a per second rate of
packet reception above which packets are discarded for multicast packets. If
the value none or 0 is specified, then packet rate limiting for multicast packets
is turned off. If another value is specified, the reception of multicast packets is
limited to this number. See the note after the bclimit parameter description for
important information about packet rate limiting. The default is none. If packet
storm protection limits are set on the switch, the port parameter must specify
complete processing blocks.
The mirror parameter specifies the role of these ports as a source of mirror
traffic. Be aware that four or more ports set to mirror traffic to the mirror port
may significantly reduce switch performance. If none is specified, no traffic