Access Management Configuration 301
■In the same aggregation group, the port isolation feature on one unit is
consistent.
■If a port is removed from an aggregation group, its port isolation configuration
will not change.
■If a port of an aggregation group is isolated on unit 1, then you can achieve
port-to-port isolation between this aggregation group and all the ports of the
isolation group on unit 1.
■If all the ports on unit 1 of this aggregation group are removed from this
aggregation group, then the isolation feature of this aggregation group is
disabled, that is, the port-to-port isolation mentioned above is unavailable.
Configuring Port Isolation on a Per-port Basis
You can use the following command to set Layer 2 isolation on a port so as to prevent
the packets from being forwarded on Layer 2 between the specified port and some
other ports (group).
Perform the following configuration in Ethernet Port View.
By default, the isolation port pool is null and the packets are allowed to be forwarded
between the specified port and all other ports on Layer 2.
Enabling/Disabling Access Management Trap
You can enable the access management trap function using the following commands.
When this function is enabled, the trap information of access management is
delivered to the console for the purpose of monitoring.
Perform the following configuration in System View.
By default, the access management trap is disabled.
Displaying and
Debugging Access
Management
After the above configuration, enter the display command in any view to display the
current configurations of access management and port isolation information, and to
verify the effect of the configuration.
Table296 Configuring Layer 2 Isolation Between Ports
Operation Command
Configure Layer 2 isolation between ports am isolate interface_list
Cancel Layer 2 isolation between ports undo am isolate interface_list
Table297 Enabling/Disabling Access Management Trap
Operation Command
Enable access management trap am trap enable
Disable access management trap undo am trap enable
Table298 Displaying Current Configuration of Access Management
Operation Command
Display the status of access management
function and configuration of IP address pool
display am [ interface_list ]
Display port isolation information display isolate port