Filter
Top Products
7-26
Using Passwords, Port Security, and Authorized IP Managers To Protect Against Unauthorized Access
Configuring and Monitoring Port Security
Using Passwords, Port
Security, and Authorized IP
Syntax: show interface List Intrusion Alert status.
show intrusion-log List Intrusion Log content.
clear intrusion-log Clear Intrusion flags on all ports.
port-security <port-number>
clear-intrusion-flag
Clear Intrusion flag on a specific port.
In the following example, executing
show interface lists the switch’s port status,
which indicates an intrusion alert on port 1.
Figure 7-9. Example of an Unacknowledged Intrusion Alert in a Port Status
Display
If you wanted to see the details of the intrusion, you would then enter the
show
intrusion-log
command. For example:
Figure 7-10. Example of the Intrusion Log with Multiple Entries for the Same Port
The above example shows three intrusions for port 1. Since the switch can
show only one uncleared intrusion per port, the older two intrusions in this
example have already been cleared by earlier use of the clear intrusion-log or
the port-security 1 clear-intrusion-flag command. (The intrusion log holds up to
Intrusion Alert on port 1.
Dates and Times of
Intrusions
MAC Address of latest
Intruder on Port 1
Earlier intrusions on
port 1 that have already
been cleared (that is,
the Alert Flag has been
reset at least twice
before the most recent
intrusion occurred.