Setting the port security age timer, Specifying secure mac addresses – Brocade TurboIron 24X Series Configuration Guide User Manual

Page 1027

Advertising
background image

Brocade TurboIron 24X Series Configuration Guide

993

53-1003053-01

Configuring the MAC port security feature

TurboIron(config)#port security

TurboIron(config-port-security)#no enable

To enable the feature on a specific interface, enter the following commands.

TurboIron(config)#int e 11

TurboIron(config-if-e10000-11)#port security

TurboIron(config-port-security-e10000-11)#enable

Syntax: port security

Syntax: [no] enable

Setting the maximum number of secure MAC addresses
for an interface

When port security is enabled, an interface can store one secure MAC address. You can increase
the number of MAC addresses that can be stored to a maximum of 64, plus the total number of
global resources available.

For example, to configure interface 11 to have a maximum of 10 secure MAC addresses, enter the
following commands.

TurboIron(config)#int e 11

TurboIron(config-if-e10000-11)#port security

TurboIron(config-port-security-e10000-11)#maximum 10

Syntax: maximum <number-of-addresses>

The <number-of-addresses> parameter can be set to a number from 0 – (64 + the total number of
global resources available). The total number of global resources is 2048 or 4096, depending on
flash memory size. Setting the parameter to 0 prevents any addresses from being learned. The
default is 1.

Setting the port security age timer

By default, learned MAC addresses stay secure indefinitely. You can optionally configure the device
to age out secure MAC addresses after a specified amount of time.

To set the port security age timer to 10 minutes on all interfaces, enter the following commands.

TurboIron(config)#port security

TurboIron(config-port-security)#age 10

To set the port security age timer to 10 minutes on a specific interface, enter the following
commands.

TurboIron(config)#int e 11

TurboIron(config-if-e10000-11)#port security

TurboIron(config-port-security-e10000-11)#age 10

Syntax: [no] age <minutes>

The default is 0 (never age out secure MAC addresses).

Specifying secure MAC addresses

This section describes how to configure secure MAC addresses on tagged and untagged interfaces.

Advertising
Popular Brands
Popular manuals