Table of Contents
Advertisement
Configuring Security
Configuring Port Security
STEP 4
Configuring Port Security
Cisco Small Business 200 Series Smart Switch Administration Guide
•
Interface—Select the port for which storm control is enabled.
•
Storm Control—Select to enable Storm Control.
•
Storm Control Rate Threshold—Enter the maximum rate at which unknown
packets can be forwarded. The default for this threshold is 10,000 for FE
devices and 100,000 for GE devices.
•
Storm Control Mode—Select one of the modes:
-
Unknown Unicast, Multicast & Broadcast—Counts unknown Unicast,
Broadcast, and Multicast traffic towards the bandwidth threshold.
-
Multicast & Broadcast—Counts Broadcast and Multicast traffic towards
the bandwidth threshold.
-
Broadcast Only—Counts only Broadcast traffic towards the bandwidth
threshold.
Click Apply. Storm control is modified, and the Running Configuration file is
updated.
Network security can be increased by limiting access on a port to users with
specific MAC addresses. The MAC addresses can be either dynamically learned
or statically configured.
Port security monitors received and learned packets. Access to locked ports is
limited to users with specific MAC addresses.
Port Security has four modes:
•
Classic Lock—All learned MAC addresses on the port are locked, and the
port does not learn any new MAC addresses. The learned addresses are
not subject to aging or re-learning.
•
Limited Dynamic Lock—The switch learns MAC addresses up to the
configured limit of allowed addresses. After the limit is reached, the switch
does not learn additional addresses. In this mode, the addresses are
subject to aging and re-learning.
•
Secure Permanent—Keeps the current dynamic MAC addresses
associated with the port and learns up to the maximum number of
17
239
Hide quick links:
Advertisement
Table of Contents
