Port Security

mohamedshajidmohamedshajid Member Posts: 81 ■■□□□□□□□□
Hello guys well then i'm studying port security to switch actually, But i learn these few commands but i'm asking in this thread there is any advance commands is used for advance port security

int fa0/0
switchport mode access
switchport port-sec
switchport port-sec max 1
switchport port-sec violation restrict
switchport port-sec mac-add XXXX.XXXX.XXXX


Thanks in Advance.
[2013] CCNA Cert Exam @IBM Premier Campus in Sri Lanka
+ Reading Todd Lammle CCNA 7th Edition, CCENT Cert Dummies
I'm totally afraid of heard strange word of cisco
+ Next Career - Red Hat Linux Networking And CCNA: Security (2013 Before June)

Comments

  • SteveO86SteveO86 Member Posts: 1,423
    I did a little write up of port-security some time ago, covers some of the commands mentioned
    Protecting Cisco Switches: Port Security « CCIE or Null!

    Your setup is statically configuring the mac address on a port so only that mac address will communicate through the port. If someone else connects a different device with another mac address to that port the traffic will get dropped.

    Hope this helps.
    My Networking blog
    Latest blog post: Let's review EIGRP Named Mode
    Currently Studying: CCNP: Wireless - IUWMS
  • JasonITJasonIT Member Posts: 114
    I have been working on port security lately. Good article in your link, thanks for your contributions.

    J
  • mohamedshajidmohamedshajid Member Posts: 81 ■■□□□□□□□□
    SteveO86 wrote: »
    I did a little write up of port-security some time ago, covers some of the commands mentioned
    Protecting Cisco Switches: Port Security « CCIE or Null!

    Your setup is statically configuring the mac address on a port so only that mac address will communicate through the port. If someone else connects a different device with another mac address to that port the traffic will get dropped.

    Hope this helps.

    Hey steve thanks for your links mate, It's extraordinary things :D Yeah if different mac-add try to access on port-sec port probably my violation mode shutdown mostly it depends on Violation modes such as

    Shutdown
    Restrict
    Protect
    [2013] CCNA Cert Exam @IBM Premier Campus in Sri Lanka
    + Reading Todd Lammle CCNA 7th Edition, CCENT Cert Dummies
    I'm totally afraid of heard strange word of cisco
    + Next Career - Red Hat Linux Networking And CCNA: Security (2013 Before June)
  • SteveO86SteveO86 Member Posts: 1,423
    Yep there are a few different violation actions. The best violation action will depend on your correct environment.
    My Networking blog
    Latest blog post: Let's review EIGRP Named Mode
    Currently Studying: CCNP: Wireless - IUWMS
Sign In or Register to comment.