Table of Contents
Advertisement
Configuring Port Security
This chapter describes how to configure port security on the Catalyst enterprise LAN switches.
For complete syntax and usage information for the commands used in this chapter, refer to the Command
Note
Reference—Catalyst 4000 Family, Catalyst 2948G, and Catalyst 2980G Switches.
This chapter consists of these sections:
•
•
•
Understanding How Port Security Works
You can use port security to block input to an Ethernet, Fast Ethernet, or Gigabit Ethernet port when the
MAC address of the station attempting to access the port is different from any of the MAC addresses
specified for that port. Alternatively, you can use port security to filter traffic destined to or received from
a specific host based on the host MAC address.
This section describes the following traffic filtering methods:
•
•
Allowing Traffic Based on the Host MAC Address
The total number of MAC addresses that can be specified per port is limited to the global resource of
1024 plus one default MAC address. That is, the total number of MAC addresses on any port cannot
exceed 1025.
78-12647-02
Understanding How Port Security Works, page 16-1
Port Security Configuration Guidelines, page 16-3
Configuring Port Security, page 16-3
Allowing Traffic Based on the Host MAC Address, page 16-1
Restricting Traffic Based on the Host MAC Address, page 16-3
Software Configuration Guide—Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4
C H A P T E R
16
16-1
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
