Allied Telesis AT-A16 Manual do Utilizador Página 10
- Página / 154
- Índice
- MARCADORES
Avaliado. / 5. Com base em avaliações de clientes
3-10 AT-8600 Series Software Reference
Software Release 2.6.4
C613-03081-00 REV A
Port security
The port security feature allows control over the stations connected to each
switch port, by MAC address. If enabled on a port, the switch learns MAC
addresses up to a user-defined limit from 1 to 256, then locks out all other MAC
addresses. One of the following options can be specified for the action taken
when an unknown MAC address is detected on a locked port:
■ Discard the packet and take no further action,
■ Discard the packet and notify management with an SNMP trap,
■ Discard the packet, notify management with an SNMP trap and disable the
port.
To enable port security on a port, set the limit for learned MAC addresses to a
value greater than zero, and specify the action to take for unknown MAC
addresses on a locked port. To disable port security on a port, set the limit for
learned MAC addresses to zero or NONE. Port security can be enabled or
disabled on a port using the command:
SET SWITCH PORT={port-list|ALL} LEARN={NONE|0|1..256}
[INTRUSIONACTION={DISCARD|TRAP|DISABLE}]
If INTRUSIONACTION is set to TRAP or DISABLE, a list of MAC addresses
for devices that are active on a port, but which are not allowed or learned for
the port, can be displayed (Figure 3-25 on page 3-147) using the command:
SHOW SWITCH PORT={port-list|ALL} INTRUSION
A switch port can be manually locked before it reaches the learning limit by
using the command:
ACTIVATE SWITCH PORT={port-list|ALL} LOCK
Addresses can be manually added to a port locked list up to a total of 256 MAC
addresses, and the learning limit can be extended to accommodate them. Use
the command:
ADD SWITCH FILTER ACTION={FORWARD|DISCARD} DESTADDRESS=macadd
PORT=port [ENTRY=entry] [LEARN] [VLAN={vlan-name|1..4094}]
Learned addresses on locked ports can be saved as part of the switch
configuration, so that they become part of the configuration after a power
cycle. Use the command:
CREATE CONFIG=filename
If the configuration is not saved when there is a locked list for a port, the
learning process begins again after the router is restarted.
- Switching 1
- Switching 3-3 3
- Introduction 4
- Switch Ports 5
- Port trunking 7
- Packet storm protection 8
- Port mirroring 9
- Port security 10
- VLAN Tagging 11
- Switching 3-13 13
- Training VLAN 15
- Marketing VLAN 15
- Creating VLANs 16
- Summary of VLAN tagging rules 17
- Static and dynamic VLANs 17
- VLAN Relaying 18
- Configuring VLAN relaying 20
- The Layer 2 Switching Process 21
- The Learning Process 22
- The Forwarding Process 23
- Quality of Service 23
- Layer 2 Filtering 24
- Spanning Tree Protocol 25
- Spanning Tree modes 27
- Tree instances 30
- Configuring STP 30
- Switching 3-31 31
- [MAXAGE=6..40] 31
- Hardware Packet Filters 34
- Layer 3 Filter Matches 36
- Layer 3 Filter Entries 37
- Access Control Lists (ACLs) 38
- Triggers 39
- Configuration Examples 40
- Switching 3-41 41
- Command Reference 49
- ACTIVATE SWITCH PORT 49
- ADD STP VLAN 50
- ADD SWITCH FILTER 51
- ACTION=FORWARD PORT=3 52
- ACTION=DISCARD VLAN=4 52
- ADD SWITCH L3FILTER ENTRY 55
- ADD SWITCH L3FILTER MATCH 58
- ADD SWITCH TRUNK 60
- ADD VLAN PORT 61
- ADD VLANRELAY 62
- CREATE STP 63
- CREATE SWITCH TRUNK 63
- CREATE VLAN 65
- CREATE VLANRELAY 66
- DELETE STP VLAN 66
- DELETE SWITCH FILTER 67
- DELETE SWITCH L3FILTER 68
- DELETE SWITCH L3FILTER ENTRY 69
- DELETE SWITCH TRUNK 69
- DELETE VLAN PORT 70
- DELETE VLANRELAY 71
- DESTROY STP 72
- DESTROY SWITCH TRUNK 72
- DESTROY VLANRELAY 74
- DISABLE STP 74
- DISABLE STP DEBUG 75
- DISABLE STP PORT 76
- DISABLE SWITCH AGEINGTIMER 77
- DISABLE SWITCH DEBUG 78
- DISABLE SWITCH HWFILTER 78
- DISABLE SWITCH LEARNING 79
- DISABLE SWITCH L3FILTER 79
- DISABLE SWITCH MIRROR 80
- DISABLE SWITCH PORT 80
- DISABLE VLAN DEBUG 81
- DISABLE VLANRELAY 81
- DISABLE VLANRELAY DEBUG 82
- ENABLE STP 82
- ENABLE STP DEBUG 83
- ENABLE STP PORT 85
- ENABLE SWITCH AGEINGTIMER 86
- ENABLE SWITCH BIST 86
- ENABLE SWITCH DEBUG 87
- ENABLE SWITCH HWFILTER 88
- ENABLE SWITCH L3FILTER 88
- ENABLE SWITCH LEARNING 88
- ENABLE SWITCH MIRROR 89
- ENABLE SWITCH PORT 89
- ENABLE VLAN DEBUG 90
- ENABLE VLANRELAY 91
- ENABLE VLANRELAY DEBUG 91
- PURGE STP 92
- RESET STP 92
- RESET SWITCH 93
- RESET SWITCH PORT 93
- SET STP PORT 96
- SET SWITCH AGEINGTIMER 100
- Software Release 2.6.4 101
- C613-03081-00 REV A 101
- SET SWITCH L3AGEINGTIMER 102
- SET SWITCH L3FILTER ENTRY 103
- SET SWITCH L3FILTER MATCH 106
- SET SWITCH MIRROR 108
- SET SWITCH PORT 109
- SET SWITCH QOS 113
- SET SWITCH TRUNK 115
- SET VLAN PORT 116
- SHOW STP 117
- SHOW STP COUNTER 121
- Related Commands RESET STP 122
- SHOW STP PORT 122
- SHOW STP DEBUG 123
- SHOW SWITCH 127
- SHOW SWITCH COUNTER 128
- SHOW SWITCH DEBUG 130
- SHOW SWITCH FDB 131
- SHOW SWITCH FILTER 133
- SHOW SWITCH HWFILTER 136
- SHOW SWITCH L3FILTER 138
- SHOW SWITCH PORT 140
- SHOW SWITCH PORT COUNTER 143
- SHOW SWITCH PORT INTRUSION 147
- SHOW SWITCH QOS 148
- SHOW SWITCH TRUNK 149
- SHOW VLAN 150
- Related Commands CREATE VLAN 151
- DESTROY VLAN 151
- SHOW VLAN DEBUG 152
- SHOW VLANRELAY 153
- SHOW VLANRELAY=SNARelay 154
Manuais e produtos relacionados com Comutadores de rede Allied Telesis AT-A16
(8 páginas)
(69 páginas)© 2020, manymanuals-pt.com. Todos os direitos reservados. | 0.120 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentários a estes Manuais