Friday, June 8, 2012

Port Security Config Commands


Command
Purpose
Switchport mode { access | trunk}
Port security requires that the port be statically set as either access or trunking
Switchport port-security [maximum value}
Enables port security on an interface & optionally defines the number of allowed MAC addresses on the port (default 1)
Switchport port-security mac-address mac-addres [vlan {vlan-id| {access | voice}}
Statically defines an allowed MAC address, for a particular VLAN (if trunking), & for either the access or voice VLAN
Switchport port-security mac-address sticky
Tells the switch to remember the dynamically learned MAC address
Switchport port-security [aging] [violation {protect | restrict | shutdown}]
Define the aging timer & actions taken when a violation occurs.