Switchport protected – Dell POWEREDGE M1000E User Manual

Page 828

Advertising
background image

2-798

Cisco Catalyst Blade Switch 3120 for HP Command Reference

OL-12248-03

Chapter 2 Cisco Catalyst Blade Switch 3120 for HP Cisco IOS Commands

switchport protected

switchport protected

Use the switchport protected interface configuration command on the switch stack or on a standalone
switch to isolate unicast, multicast, and broadcast traffic at Layer 2 from other protected ports on the
same switch. Use the no form of this command to disable protection on the port.

switchport protected

no switchport protected

Syntax Description

This command has no arguments or keywords.

Defaults

No protected port is defined. All ports are nonprotected.

Command Modes

Interface configuration

Command History

Usage Guidelines

The switchport protection feature is local to the switch; communication between protected ports on the
same switch is possible only through a Layer 3 device. To prevent communication between protected
ports on different switches, you must configure the protected ports for unique VLANs on each switch
and configure a trunk link between the switches. A protected port is different from a secure port.

A protected port does not forward any traffic (unicast, multicast, or broadcast) to any other port that is
also a protected port. Data traffic cannot be forwarded between protected ports at Layer 2; only control
traffic, such as PIM packets, is forwarded because these packets are processed by the CPU and
forwarded in software. All data traffic passing between protected ports must be forwarded through a
Layer 3 device.

Because a switch stack represents a single logical switch, Layer 2 traffic is not forwarded between any
protected ports in the switch stack, whether they are on the same or different switches in the stack.

Port monitoring does not work if both the monitor and monitored ports are protected ports.

Examples

This example shows how to enable a protected port on an interface:

Switch(config)# interface gigabitethernet1/0/2

Switch(config-if)# switchport protected

You can verify your settings by entering the show interfaces interface-id switchport privileged EXEC
command.

Release

Modification

12.2(40)EX1

This command was introduced.

Advertising
Popular Brands
Popular manuals