Support User Manuals

3Com 5500-SI Switch User Manual

Open as PDF

of 686

300 CHAPTER 17: NETWORK PROTOCOL OPERATION

By default, the system disables the access management function.

Configuring the Access Management IP Address Pool Based on the Port

You can use the following command to set the IP address pool for access

management on a port. The packet whose source IP address is in the specified pool is

allowed to be forwarded on Layer 3 using the port of the Switch.

Perform the following configuration in Ethernet Port View.

By default, the IP address pools for access management on the port are null and all

the packets are permitted.

Note that if the IP address pool to be configured contains the IP addresses configured

in the static ARP at other ports, then the system prompts you to delete the static ARP

to make the later binding effective.

Configuring Layer 2 Isolation Between Ports

You can add a port to an isolation group using the following commands, and achieve

port-to-port isolation between this port and other ports of this group, that is, Layer 2

forwarding between the isolated ports is not available.

Perform the following configuration in Ethernet Port View.

By default, a port is not in an isolation group, that is Layer 2 forwarding is achievable

between this port and other ports.

Note that:

■ One unit only supports one isolation group. That is, a port in an isolation group on

a unit is isolated only from ports within this group, and not isolated from ports in

isolation groups on other units.

■ The port isolation feature is synchronous on the same unit within an aggregation

group. Note the following:

■ When a port in an aggregation group is added to, or removed from, an

isolation group, then all the other ports of this aggregation group on the same

unit are automatically added in or removed from this isolation group.

Disable access management function undo am enable

Table 294 Configuring the Access Management IP Address Pool Based on the Port

Operation Command

Configure the access management IP address pool

based on the port

am ip-pool address_list

Cancel part or all of the IP addresses in the access

management IP address pool of the port

undo am ip-pool { all |

address_list }

Table 295 Configuring Layer 2 Isolation Between Ports

Operation Command

Add a port to the isolation group port isolate

Remove a port from the isolation group undo port isolate

Table 293 Enabling/Disabling the Access Management Function

Operation Command

previous next