Manualshelf

Product manual

ManualsBrandsProCurve ManualsComputer equipment8212zl
371372373374375376377378379380
o action <none|send-alarm|send-disable> - Indicates the port security
action the switch will take if an intruder is detected on the
port.
o clear-intrusion-ag - clears intrusion indicator for the ports
specied in the command PORT-LIST.
COMMAND STRUCTURE
port-security [ETHERNET] PORT-LIST action < none | send-alarm | send-disable > -- Define device's
action in case of an intrusion detection. (p. 372)
port-security [ETHERNET] PORT-LIST address-limit < 1 to 32 > -- Define number of authorized
addresses on the port(s). (p. 373)
port-security [ETHERNET] PORT-LIST clear-intrusion-flag -- Clear intrusion indicator for the port(s)
(p. 373)
port-security [ETHERNET] PORT-LIST learn-mode < continuous | static | configured | ... > -- Define
the mode of acquiring authorized MAC address(es). (p. 373)
[no] port-security [ETHERNET] PORT-LIST mac-address -- Configure the address(es) authorized
on the port(s). (p. 373)
mac-addr -- Authorized MAC address. (MAC-ADDR) (p. 373)
EXAMPLES
Example: port-security learn-mode
Configure port A1 to automatically accept the first device (MAC address) it detects as the only
authorized device for that port. (The default device limit is 1.) This command also configures the port
to send an alarm to a network management station and disable itself if an intruder is detected on the
port.
ProCurve(cong)# port-security a1 learn-mode static action send-disable
Example: port-security learn-mode
Configure port A5 to allow two MAC addresses, 00c100-7fec00 and 0060b0-889e00, as the authorized
devices. This command also configures the switch to send an alarm to a management station if an
intruder is detected on the port, but nonetheless to allow the intruder to access to the network.
ProCurve(cong)# port-security a5 learn-mode static
address-limit 2 mac-address 00c100-7fec00 0060b0-889e00
action send-alarm
COMMAND DETAILS
mac-addr (p. 373)clear-intrusion-flag (p. 373)action (p. 372)
mac-address (p. 373)learn-mode (p. 373)address-limit (p. 373)
action
port-security [ETHERNET] PORT-LIST action < none | send-alarm | send-disable >
Dene device's action in case of an intrusion detection.
Supported Values:
none
send-alarm
send-disable
372© 2008 Hewlett-Packard Development Company, L.P.
port-securityCommand Line Interface Reference Guide