Filter
Top Products
•
Enable auto-learning for your Ethernet segment using the following
example:
8260A> set security network ethernet_3 auto-learning enable
•
Although the port and network auto-learning is enabled, the E-SEC
module will not auto-learn MAC addresses attached to each port until
you enable the security mode for the segment using the following
example:
8260A> set security network ethernet_3 mode enable
At this stage, the E-SEC module learns the addresses of all the
stations attached to the ports for which you have enabled the
auto-learning option.
•
Review the contents of the network security address table using the
following command:
8260A> show security address_table {all | group | port}
The output from this command for our network is shown in Figure 78.
----- -------- ------------------- ---------------- ----------------------
02.16 ENABLED OKAY ETHERNET_3
8260A> show security port 2.16 verbose
Security Port Table Display for Module 1 E24PS-6/8:
Port AutoLearn FailSafe Group_A Group_B Intruder_Check Jamming
---- --------- -------- ------- ------- -------------- -------
02.16 ENABLED DISABLED 0 0 DISABLED ENABLED
8260A> set security network ethernet_3 mode enable
ETHERNET_3 Administrative Mode set to ENABLED.
8260A> show security address_table all
Entry Port Group_Code MAC_Address
----- ----- ---------- -----------------
1. 2.8 08-00-5a-61-58-cf
2. 2.15 10-00-5a-d4-b0-8c
3. 2.12 10-00-5a-82-59-32
4. 2.16 10-00-5a-82-5a-6a
8260A>
Figure 78. Network Security Address Table
•
Once you are satisfied that all the desired entries have been learned,
you must stop the auto-learning on the network using the following
command:
8260A> set security network ethernet_3 auto-learning disable
Note: If you do not disable auto-learning, any deletions that you may
do in this table will be rendered useless as the E-SEC module will
learn the addresses again.
b. Add or delete entires to the network security table using the manual
process. For example, we deleted the entry for port 2.12 as we did not
Chapter 7. 8260 Ethernet Modules 125