Reference Guide
228 Network Security
– Discarded with a trap
– The port is shutdown
Locked port security enables storing a list of MAC addresses in the
configuration file. The MAC addresses are restored when the device is reset.
Disabled ports can be activated from the Port Configuration page.
To configure port security:
1
Click
Switching
>
Network Security
>
Port Security
to display the
Port
Security: Summary
page.
Security parameters are displayed for all ports or LAGs, depending on the
selected interface type.
2
To modify the security parameters for a port, select it, and click
Edit
.
3
Enter the following fields:
–
Interface
— Select the interface to be configured. The possible
options are
External Port, Internal Port
or
LAG
.
–
Current Port Status
— Displays the current port status.
–
Set Port
— Select to either lock or unlock the port.
–
Learning Mode
— Set the locked port type. The
Learning Mode
field
is enabled only if
Locked
is selected in the
Set Port
field. The possible
options are:
•
Classic Lock
— Locks the port using the classic lock mechanism.
The port is immediately locked, regardless of the number of
addresses that have already been learned.
•
Limited Dynamic Lock
— Locks the port by deleting the
dynamic MAC addresses associated with the port. The port learns
up to the maximum addresses allowed on the port. Both
relearning and aging MAC addresses are enabled.
–
Max Entries (0-128)
— Enter the maximum number of MAC
addresses that can be learned on the port. The
Max Entries
field
is
enabled only if
Locked
is selected in the
Set Port
field, and the
Limited Dynamic Lock
mode is selected in
Learning Mode
field.
–
Action on Violation
— Select the action to be applied to packets
arriving on a locked port. The possible options are:
•
Discard
— Discard the packets from any unlearned source.