Friday, May 30, 2008

Port Security on Cisco Switches

Port Security: 1900 Series Switches

1900 Series Switch

1900Switch(config-if)#port secure

Interface will become secure

1900Switch(config-if)#port secure max-mac-count 1

Only one MAC address will be allowed in the MAC table for this interface

2900 Series Switch

2900Switch(config)#int fa0/1

2900Switch(config-if)#port security

2900Switch(config-if)#port security max-mac-count 1

Only one MAC address will be allowed for this interface

2900Switch(config-if)#port security action shutdown

Port will shut down if violation occurs

2950 Series Switch

2950Switch(config)#int fa 0/1

2950Switch(config-if)#switchport port-security

2950Switch(config-if)#switchport port-security mac-address sticky

Interface converts all MAC addresses to sticky secure addressesonly the MAC address learned first will now be accepted on this port

2950Switch(config-if)#switchport port-security maximum 1

Only one MAC address will be allowed for this interface

2950Switch(config-if)#switchport port-security violation shutdown

Port will shut down if violation occurs
Posted by Joseph Martinez at 5:54 PM
Labels:

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)