Cisco Systems 4500 Switch User Manual

Open as PDF

of 1504

45-28

Software Configuration Guide—Release 15.0(2)SG

OL-23818-01

Chapter 45 Configuring DHCP Snooping, IP Source Guard, and IPSG for Static Hosts

Configuring IP Source Guard for Static Hosts

200.1.1.5 0001.0600.0000 8 GigabitEthernet3/1 INACTIVE

200.1.1.6 0001.0600.0000 8 GigabitEthernet3/1 INACTIVE

200.1.1.7 0001.0600.0000 8 GigabitEthernet3/1 INACTIVE

The following example display the count of all IP device tracking host entries for all interfaces:

Switch# show ip device tracking all count

Total IP Device Tracking Host entries: 5

---------------------------------------------------------------------

Interface Maximum Limit Number of Entries

---------------------------------------------------------------------

Fa4/3 5

IPSG for Static Hosts on a PVLAN Host Port

You can configure IPSG for static hosts on a PVLAN host port.

To enable IPSG for static hosts with IP filters on a PVLAN host port, perform this task:

This example shows how to enable IPSG for static hosts with IP filters on a PVLAN host port:

Switch(config)# vlan 200

Switch(config-vlan)# private-vlan primary

Switch(config-vlan)# exit

Switch(config)# vlan 201

Switch(config-vlan)# private-vlan isolated

Command Purpose

Step 1

Switch(config)# vlan n1

Enters configuration VLAN mode.

Step 2

Switch(config-vlan)# private-vlan primary

Establishes a primary VLAN on a PVLAN port.

Step 3

Switch(config-vlan)# exit

Exits VLAN configuration mode.

Step 4

Switch(config)# vlan n2

Enters configuration VLAN mode.

Step 5

Switch(config-vlan)# private-vlan isolated

Establishes an isolated VLAN on a PVLAN port.

Step 6

Switch(config-vlan)# exit

Exits VLAN configuration mode.

Step 7

Switch(config)# vlan n1

Enters configuration VLAN mode.

Step 8

Switch(config-vlan)# private-vlan association 201

Associates the VLAN on an isolated PVLAN port.

Step 9

Switch(config-vlan)# exit

Exits VLAN configuration mode.

Step 10

Switch(config)# interface fastEthernet a/b

Enters interface configuration mode.

Step 11

Switch(config-if)# switchport mode private-vlan

host

(Optional) Establishes a port as a PVLAN host.

Step 12

SSwitch(config-if)# switchport private-vlan

host-association a b

(Optional) Associates this port with the corresponding

PVLAN.

Step 13

Switch(config-if)# ip device tracking maximum n

Establishes a maximum limit for the bindings on this

port.

Step 14

Switch(config-if)# ip verify source tracking

[port-security]

Activates IPSG for static hosts on this port.

Step 15

Switch(config-if)# end

Exits configuration interface mode.

Step 16

Switch# show ip device tracking all

Verifies the configuration.

Step 17

Switch# show ip verify source interface-name

Verifies the configuration.

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

Cisco Systems 4500 Switch User Manual