Manualsbrain.com
  1. 份说明书
  2. 个品牌
  3. Alcatel-Lucent
  4. 6850-48
  5. 网络指南

Alcatel-Lucent 6850-48 网络指南

下载
页码 1162
Configuring Learned Port Security
Sample Learned Port Security Configuration
OmniSwitch AOS Release 6 Network Configuration Guide
September 2009
page 3-3
Sample Learned Port Security Configuration
This section provides a quick tutorial that demonstrates the following tasks:
• Enabling LPS on a set of switch ports.
• Defining the maximum number of learned MAC addresses allowed on an LPS port.
• Defining the time limit in which source learning is allowed on all LPS ports. 
• Selecting a method for handling unauthorized traffic received on an LPS port.
Note that LPS is supported on Ethernet and gigabit Ethernet fixed, mobile, tagged and authenticated ports. 
Link aggregate and tagged (trunked) link aggregate ports are not eligible for LPS monitoring and control.
Enable LPS on ports 6 through 12 on slot 3, 4, and 5 using the following command:
-> port-security 3/6-12 4/6-12 5/6-12 enable
Set the total number of learned MAC addresses allowed on the same ports to 25 using the following 
command:
-> port-security 3/6-12 4/6-12 5/6-12 maximum 25
Configure the amount of time in which source learning is allowed on all LPS ports to 30 minutes using 
the following command:
-> port-security shutdown 30
Select shutdown for the LPS violation mode using the following command:
-> port-security 3/6-12 4/6-12 5/6-12 violation shutdown
Note. Optional. To verify LPS port configurations, use th
 command. 
For example:
-> show port-security
Port:  1/30
   Operation Mode           :          DISABLED,
   Max Bridged  MAC allowed :                 1,
   Max Filtered MAC allowed :                 5,
   Low  End of MAC Range    : 00:00:00:00:00:00,
   High End of MAC Range    : ff:ff:ff:ff:ff:ff,
   Violation Setting        :          RESTRICT,
              MAC          VLAN       MAC TYPE
      -------------------+------+-------------------
       00:20:95:00:fa:5c      1       STATIC
To verify the new source learning time limit value, use the 
 command. For 
example:
-> show port-security shutdown
LPS Shutdown Config        = 2 min
Convert-to-static          = DISABLE
Remaining Learning Window  = 110 sec