Alcatel-Lucent 6850-48 Reference Guide

Learned Port Security Commands

OmniSwitch CLI Reference Guide

page 18-15

Selects the method for handling traffic that does not comply with LPS restrictions for the specified port(s). 

port-security slot/port[-port2] violation {restrict | shutdown}

The slot number for the module and the physical port number on that 
module (e.g., 3/1 specifies port 1 on slot 3).

The last port number in a range of ports you want to configure on the 
same slot (e.g, 3/1-4 specifies ports 1-4 on slot 3).

Filters (blocks) unauthorized traffic but allows traffic that complies with 
LPS restrictions to forward on the port.

The port is disabled when the port receives unauthorized traffic; no traf-
fic is allowed on the port.

By default, the security violation mode is set to restrict when LPS is enabled on the port.

OmniSwitch 6400, 6850, 6855, 9000, 9000E

• When a traffic violation occurs on an LPS port, notice is sent to the Switch Logging task. 

• If the violation mode is set to restrict, unauthorized source MAC addresses are not learned in the LPS 

table but are still recorded in the source learning MAC address table with a filtered operational status. 
This allows the user to view MAC addresses that were attempting unauthorized access to the LPS port.

• When an LPS port is disabled (shutdown) or unauthorized traffic received on the port is filtered 

(restrict) due to a security violation, use the 

 command to restore the port to 

normal operation. 

-> port-security 2/14 violation restrict

-> port-security 4/10-15 violation shutdown

Release 6.1; command was introduced.