Cisco SFE1000P Administration Guide - Page 38

Chapter SFE1000P Gigabit Ethernet Switch Administration Guide 5 Modifying Storm Control 1. Click Security Suite > Traffic Control > Storm Control. The Storm Control Page opens: 2. Click the Edit Button. The Edit Storm Control Page opens: Edit Storm Control Page 3. Modify the relevant fields. 4. Click Apply. Storm control is modified, and the device is updated. Defining Port Security Network security can be increased by limiting access on a specific port only to users with specific MAC addresses. The MAC addresses can be dynamically learned or statically configured. Locked port security monitors both received and learned packets that are received on specific ports. Access to the locked port is limited to users with specific MAC addresses. These addresses are either manually defined on the port, or learned on that port up to the point when it is locked. When a packet is received on a locked port, and the packet source MAC address is not tied to that port (either it was learned on a different port, or it is unknown to the system), the protection mechanism is invoked, and can provide various options. Unauthorized packets arriving at a locked port are either: • Forwarded • Discarded with no trap • Discarded with a trap • Cause the port to be shut down. Locked port security also enables storing a list of MAC addresses in the configuration file. The MAC address list can be restored after the device has been reset. Disabled ports are activated from the Port Management page. NOTE: To configure port lock, 802.1x multiple host mode must be enabled. Chapter 5: Configuring Device Security 30 Defining Traffic Control