CLI Reference Guide-R05

ManualsBrandsEdgecore Networks ManualsEnterpriseL2 Gigabit Ethernet Carrier Grade Switch

291

292

293

294

295

296

297

298

299

300

Table Of Contents

Chapter 9

| General Security Measures

Network Access (MAC Address Authentication)

– 292 –

no network-access link-detection

action - Response to take when port security is violated.

shutdown - Disable port only.

trap - Issue SNMP trap message only.

trap-and-shutdown - Issue SNMP trap message and disable the port.

Default Setting

Disabled

Command Mode

Interface Configuration

Example

Console(config)#interface ethernet 1/1

Console(config-if)#network-access link-detection link-up-down action trap

Console(config-if)#

network-access

max-mac-count

Use this command to set the maximum number of MAC addresses that can be

authenticated on a port interface via all forms of authentication. Use the no form of

this command to restore the default.

Syntax

network-access max-mac-count count

no network-access max-mac-count

count - The maximum number of authenticated IEEE 802.1X and MAC

addresses allowed. (Range: 1-2048)

Default Setting

1024

Command Mode

Interface Configuration

Command Usage

The maximum number of MAC addresses per port is 1024, and the maximum

number of secure MAC addresses supported for the switch system is 1024. When

the limit is reached, all new MAC addresses are treated as authentication failures.

Example

Console(config-if)#network-access max-mac-count 5

Console(config-if)#