SMC Networks SMC TigerStack II SMC6624M User Manual

7-24

Using Passwords, Port Security, and Authorized IP Managers To Protect Against Unauthorized Access
Configuring and Monitoring Port Security

Usi

ng P

a

sswo

rds,

P

o

rt

Se

c

u

rity,

a

n

d

A

u

th

o

riz

e

d

IP

Syntax:

show interface

List Intrusion Alert status.

show intrusion-log

List Intrusion Log content.

clear intrusion-log

Clear Intrusion flags on all ports.

port-security <port-number>
clear-intrusion-flag

Clear Intrusion flag on a specific port.

In the following example, executing

show interface

lists the switch’s port status,

which indicates an intrusion alert on port 1.

Figure 7-9. Example of an Unacknowledged Intrusion Alert in a Port Status

Display

If you wanted to see the details of the intrusion, you would then enter the

show

intrusion-log

command. For example:

Figure 7-10. Example of the Intrusion Log with Multiple Entries for the Same Port

The above example shows three intrusions for port 1. Since the switch can
show only one uncleared intrusion per port, the older two intrusions in this
example have already been cleared by earlier use of the

clear intrusion-log or

the

port-security 1 clear-intrusion-flag command. (The intrusion log holds up to

20 intrusion records, and deletes intrusion records only when the log becomes

Intrusion Alert on port 1.

Dates and Times of
Intrusions

MAC Address of latest
Intruder on Port 1

Earlier intrusions on
port 1 that have already
been cleared (that is,
the Alert Flag has been
reset at least twice
before the most recent
intrusion occurred.