Cisco WS-C2960S-24PD-L Software Guide - Page 209
Disabling Port Security, Configuring Port Security Aging
View all Cisco WS-C2960S-24PD-L manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 209 highlights
Chapter 7 Configuring the Switch Ports Enabling Port Security Step 3 Step 4 Step 5 Step 6 Command port security max-mac-count 1 port security action shutdown end show port security Purpose Secure the port and set the address table to one address. Set the port to shutdown when a security violation occurs. Return to privileged EXEC mode. Verify the entry. Disabling Port Security Beginning in privileged EXEC mode, follow these steps to disable port security: Step 1 Step 2 Command configure terminal interface interface Step 3 Step 4 Step 5 no port security end show port security Purpose Enter global configuration mode. Enter interface configuration mode for the port you want to disable port security. Disable port security. Return to privileged EXEC mode. Verify the entry. Configuring Port Security Aging Note This feature is not available on the Catalyst 2900 LRE XL switches. You can use port security aging to set the aging time for all dynamic and static secure addresses on a port. When port security aging is enabled on a port, the secure addresses on the port are deleted only if the secure addresses are inactive for the specified aging time. Use this feature to remove and add PCs on a secure port without manually deleting the existing secure MAC addresses and to still limit the number of secure addresses on a port. Beginning in privileged EXEC mode, follow these steps to enable the port security aging feature: Step 1 Step 2 Command configure terminal interface interface Step 3 port security aging time time Step 4 end Step 5 show port security [interface-id] Purpose Enter global configuration mode. Enter interface configuration mode for the port on which you want to enable port security aging. Enable port security aging for this port and set the aging time. For time, specify the age time for this port. Valid range is from 0 to 1440 minutes. If the time is equal to 0, aging is disabled for this port. Return to privileged EXEC mode. Verify the entry. 78-6511-08 Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide 7-11