Support User Manuals

D-Link xStackTM DGS/DXS-3300 Series Switch User Manual

Open as PDF

of 362

xStack DGS/DXS-3300 Series Layer 3 Stackable Gigabit Ethernet Switch CLI Manual

29

6

PORT SECURITY COMMANDS

The port security commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the

following table.

Command Parameters

config port_security ports [<portlist> | all ] {admin_state [enable | disable] |

max_learning_addr <max_lock_no 0-64> |

lock_address_mode [Permanent | DeleteOnTimeout |

DeleteOnReset]}

show port_security {ports <portlist>}

delete

port_security_entry_vlan_name

<vlan_name 32> port <port> mac_address <macaddr>

Each command is listed, in detail, in the following sections.

config port_security ports

Purpose Used to configure port security settings.

Syntax

[<portlist> | all ] {admin_state [enable | disable] | max_learning_addr

<max_lock_no 0-64> | lock_address_mode [Permanent |

DeleteOnTimeout | DeleteOnReset]}

Description This command allows for the configuration of the port security feature.

Only the ports listed in the <portlist> are effected.

Parameters

<portlist> − Specifies a range of ports to be configured. The port list is

specified by listing the lowest switch number and the beginning port

number on that switch, separated by a colon. Then the highest switch

number, and the highest port number of the range (also separated by a

colon) are specified. The beginning and end of the port list range are

separated by a dash. For example, 1:3 specifies switch number 1, port 3.

2:4 specifies switch number 2, port 4. 1:3-2:4 specifies all of the ports

between switch 1, port 3 and switch 2, port 4 − in numerical order.

all − Configure port security for all ports on the Switch.

admin_state [enable | disable] – Enable or disable port security for the

listed ports.

max_learning_addr <max_lock_no 0-64> - Use this to limit the number of

MAC addresses dynamically listed in the FDB for the ports.

lock_address_mode [Permanent | DeleteOnTimeout | DeleteOnReset] –

Indicates the method of locking addresses. The user has three choices:

 Permanent – The locked addresses will age out only after the

Switch has been reset.

 DeleteOnTimeout – The locked addresses will age out after the

aging timer expires.

 DeleteOnReset – The locked addresses will not age out until the

Switch has been reset or rebooted.

Restrictions Only administrator-level users can issue this command.

Example usage:

previous next