3 example of port security, Xample of, Port – PLANET WGSW-52040 User Manual

MAC address table or a MAC

address is configured to

several interfaces in same

VLAN, both of them will violate

the security of the MAC

address.

switchport port-security aging {static | time <value>

| type {absolute | inactivity}}

no switchport port-security violation aging {static |

time | type}

Enable port-security aging

entry of the interface, specify

aging time or aging type.

Admin mode

clear port-security {all | configured | dynamic |

sticky} [[address <mac-addr> | interface

<interface-id>] [vlan <vlan-id> ]]

Clear the secure MAC entry of

the interface.

show port-security [interface <interface-id>]

[address | vlan]

Show port-security

configuration.

15.3 Example of PORT SECURITY

Internet

Figure 15-1: Typical topology chart for port security

When the interface enabled Port security function, configure the maximum number of the

secure MAC addresses allowed by a interface to be 10, the interface allows 10 users to access

the internet at most. If it exceeds the maximum number, the new user cannot access the

internet, so that it not only limit the user’s number but also access the internet safely. If

configuring the maximum number of the secure MAC addresses as 1, only HOST A or HOST B

is able to access the internet.

Configuration process:

#Configure the switch.

15-50