Manualshelf

ECS4100 Series CLI Reference Guide-R07

ManualsBrandsEdgecore Networks ManualsEnterpriseL2+/L3 Lite Gigabit Ethernet Access Switch
371372373374375376377378379380
Table Of Contents
Chapter 9
| General Security Measures
Port-based Traffic Segmentation
– 372 –
When traffic segmentation is disabled, all ports operate in normal forwarding
mode based on the settings specified by other functions such as VLANs and
spanning tree protocol.
Enter the traffic-segmentation command without any parameters to enable
traffic segmentation. Then set the interface members for segmented groups
using the traffic-segmentation uplink/downlink command.
Enter no traffic-segmentation to disable traffic segmentation and clear the
configuration settings for segmented groups.
Example
This example enables traffic segmentation globally on the switch.
Console(config)#traffic-segmentation
Console(config)#
traffic-segmentation
session
This command creates a traffic-segmentation client session. Use the no form to
remove a client session.
Syntax
[no] traffic-segmentation session session-id
session-id – Traffic segmentation session. (Range: 1-4)
Default Setting
None
Command Mode
Global Configuration
Command Usage
Use this command to create a new traffic-segmentation client session.
Using the no form of this command will remove any assigned uplink or
downlink ports, restoring these interfaces to normal operating mode.
Session #2
Uplink Ports
Blocking Blocking/
Forwarding
*
Forwarding Forwarding Forwarding
Normal Ports Forwarding Forwarding Forwarding Forwarding Forwarding
* The forwarding state for uplink-to-uplink ports is configured by the traffic-
segmentation uplink-to-uplink command.
Table 68: Traffic Segmentation Forwarding (Continued)
Destination
Source
Session #1
Downlinks
Session #1
Uplinks
Session #2
Downlinks
Session #2
Uplinks
Normal
Ports