Configuration Guide (Supporting R2.2.0.0) Owner's manual

910 Brocade 6910 Ethernet Access Switch Configuration Guide
53-1002651-02
42
Configuring Port Security
If a port is disabled (shut down) due to a security violation, it must be manually re-enabled
from the Interface > Port > General page (see “Port Configuration” on page 701).
A secure port has the following restrictions:
It cannot be used as a member of a static or dynamic trunk.
It should not be connected to a network interconnection device.
Parameters
These parameters are displayed:
Port – Port identifier.
Security Status Enables or disables port security on an interface. (Default: Disabled)
Port Status – The operational status:
Secure/Down – Port security is disabled.
Secure/Up – Port security is enabled.
Shutdown – Port is shut down due to a response to a port security violation.
Action – Indicates the action to be taken when a port security violation is detected:
None: No action should be taken. (This is the default.)
Trap: Send an SNMP trap message.
Shutdown: Disable the port.
Trap and Shutdown: Send an SNMP trap message and disable the port.
Max MAC Count – The maximum number of MAC addresses that can be learned on a port.
(Range: 0-1024, where 0 means disabled)
The maximum address count is effective when port security is enabled or disabled.
Current MAC Count The number of MAC addresses currently associated with this interface.
Last Intrusion MAC – The last unauthorized MAC address detected.
Last Time Detected Intrusion MAC The last time an unauthorized MAC address was detected.
Interface
To configure port security:
1. Click Security, Port Security.
2. Mark the check box in the Security Status column to enable security, set the action to take
when an invalid address is detected on a port, and set the maximum number of MAC
addresses allowed on the port.
3. Click Apply