Show port security – Brocade Communications Systems Brocate Ethernet Access Switch 6910 User Manual
Page 245
Brocade 6910 Ethernet Access Switch Configuration Guide
195
53-1002581-01
Port Security
10
•
To configure the maximum number of address entries which can be learned on a port, specify
the maximum number of dynamic addresses allowed. The switch will learn up to the maximum
number of allowed address pairs <source MAC address, VLAN> for frames received on the
port. (The specified maximum address count is effective when port security is enabled or
disabled.) Note that you can manually add additional secure addresses to a port using the
command. When the port has reached the maximum number of MAC
addresses, the port will stop learning new addresses. The MAC addresses already in the
address table will be retained and will not be aged out.
•
If port security is enabled, and the maximum number of allowed addresses are set to a
non-zero value, any device not in the address table that attempts to use the port will be
prevented from accessing the switch.
•
If a port is disabled due to a security violation, it must be manually re-enabled using the
no
command.
•
A secure port has the following restrictions:
•
Cannot be connected to a network interconnection device.
•
Cannot be a trunk port.
Example
The following example enables port security for port 5, and sets the response to a security violation
to issue a trap message:
Console(config)#interface ethernet 1/5
Console(config-if)#port security action trap
Related Commands
show interfaces status (281)
shutdown (268)
mac-address-table static (328)
show port security
This command displays port security status and the secure address count.
Syntax
show port security [interface interface]
interface - Specifies a port interface.
ethernet unit/port
unit - This is unit 1.
port - Port number. (Range: 1-12)
Command Mode
Privileged Exec