Cisco Systems SG50028PK9NA Manual De Usuario

Configuring Port Security

Cisco Small Business 200, 300 and 500 Series Managed Switch Administration Guide (Internal Version) 

357

 

•

Storm Control Mode—Select one of the modes: 

-

Unknown Unicast, Multicast & Broadcast—Counts unknown Unicast, 
Broadcast, and Multicast traffic towards the bandwidth threshold.

-

Multicast & Broadcast—Counts Broadcast and Multicast traffic towards 
the bandwidth threshold.

-

Broadcast Only—Counts only Broadcast traffic towards the bandwidth 
threshold.

Click Apply. Storm control is modified, and the Running Configuration file is 
updated.

Network security can be increased by limiting access on a port to users with 
specific MAC addresses. The MAC addresses can be either dynamically learned 
or statically configured.

Port security monitors received and learned packets. Access to locked ports is 
limited to users with specific MAC addresses. 

Port Security has four modes:

•

Classic Lock—All learned MAC addresses on the port are locked, and the 
port does not learn any new MAC addresses. The learned addresses are 
not subject to aging or re-learning. 

•

Limited Dynamic Lock—The device learns MAC addresses up to the 
configured limit of allowed addresses. After the limit is reached, the device 
does not learn additional addresses. In this mode, the addresses are 
subject to aging and re-learning.

•

Secure Permanent—Keeps the current dynamic MAC addresses 
associated with the port and learns up to the maximum number of 
addresses allowed on the port (set by Max No. of Addresses Allowed). 
Relearning and aging are disabled. 

•

Secure Delete on Reset—Deletes the current dynamic MAC addresses 
associated with the port after reset. New MAC addresses can be learned 
as Delete-On-Reset ones up to the maximum addresses allowed on the 
port. Relearning and aging are disabled.