Port Security Modes

Table 1-1 describes the available port security modes.

Table 1-1Description of port security modes

 

 

Security mode

 

Description

 

Feature

 

 

 

 

 

 

In this mode,

 

 

 

 

 

 

neither the

 

 

 

 

Port security is disabled on the port and access to the port is

 

NTK nor the

 

 

noRestriction

 

 

intrusion

 

 

 

not restricted.

 

 

 

 

 

 

protection

 

 

 

 

 

 

 

 

 

 

 

 

feature is

 

 

 

 

 

 

triggered.

 

 

 

 

 

 

 

 

 

 

 

In this mode, a port can learn a specified number of MAC

 

 

 

 

 

 

addresses and save those addresses as secure MAC

 

 

 

 

 

 

addresses.

 

 

 

 

autolearn

 

When the number of secure MAC addresses reaches the

 

In either mode,

 

 

 

upper limit, the port changes to work in secure mode and

 

the device will

 

 

 

 

 

 

 

 

 

permits only frames whose source MAC addresses are

 

trigger NTK

 

 

 

 

secure MAC addresses or static MAC addresses configured

 

and intrusion

 

 

 

 

by using the mac-address static command.

 

protection

 

 

 

 

 

 

upon detecting

 

 

 

 

In this mode, the port is disabled from learning MAC

 

 

 

 

 

 

an illegal

 

 

secure

 

addresses.

 

packet.

 

 

 

Only those packets whose source MAC addresses are

 

 

 

 

 

 

security MAC addresses learned and static or dynamic MAC

 

 

 

 

 

 

addresses can pass through the port.

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

In this mode,

 

 

userlogin

 

In this mode, port-based 802.1x authentication is performed

 

neither NTK

 

 

 

 

nor intrusion

 

 

 

for access users.

 

 

 

 

 

 

protection will

 

 

 

 

 

 

 

 

 

 

 

 

be triggered.

 

 

 

 

 

 

 

1-2

Page 139
Image 139
3Com WX3000 operation manual Port Security Modes, Security mode Description Feature, This mode, Neither