3com 5104M-FIB 사용자 설명서
SHOW SECURITY_ADVANCED INTRUDER_TABLE 2-387
SHOW
SECURITY_ADVANCED
INTRUDER_TABLE
SECURITY_ADVANCED
INTRUDER_TABLE
Use the SHOW SECURITY_ADVANCED INTRUDER_TABLE command to display
information on recent intrusion attempts for Ethernet networks with
CoreBuilder 5000 Ethernet Private Line Cards.
information on recent intrusion attempts for Ethernet networks with
CoreBuilder 5000 Ethernet Private Line Cards.
The security intruder table contains a detailed log on the last 100 intrusion
attempts on each secured network. To log intrusion attempts in the security
intruder table, you must:
attempts on each secured network. To log intrusion attempts in the security
intruder table, you must:
■
Enable the intruder reporting network parameter
■
Enable per-port intruder checking
■
Enable either source address or source port checking
After intrusion detection is properly configured, the Ethernet Private Line Card
reports intruders to the DMM, which then stores the information in the security
intruder table.
reports intruders to the DMM, which then stores the information in the security
intruder table.
Each table entry contains the MAC address and associated port or group code, the
date and time of the attempted intrusion, the network on which the intrusion
occurred, and the number of the intrusion attempts on the secured network.
date and time of the attempted intrusion, the network on which the intrusion
occurred, and the number of the intrusion attempts on the secured network.
The Ethernet Private Line Card does not save intruder table information in
non-volatile RAM (NVRAM).
non-volatile RAM (NVRAM).
Format
Example
The following command displays the currently stored Ethernet security intruder
table:
table:
Related Command
CLEAR SECURITY ADVANCED
show security_advanced intruder_table
chronological
port
chronological
Displays the list of intruder attempts from the Intruder table in chronological
order.
order.
port
Displays the list of intruder attempts from the Intruder table by port number.
CB5000> show security_advanced intruder_table port
Port
MAC Address
Time Stamp
Network
Attempts
Description
-----
---------------------------
-------
--------
-----------------
02.03
08-00-2b-00-00-0108FEB95
ETHERNET_7
13
Intruder station
10:04:34
08-00-2b-00-00-01 accesse
port 02.03 13 times...
Port
MAC Address
Time Stamp
Network
Attempts
Description
-----
---------------------------
-------
--------
-----------
02.04
08-00-2b-00-00-0108FEB95
ETHERNET_3
4
Intruder station
09:02:45
08-00-2b-00-00-01 accesse
port 02.04 4 times...