CLI (Command Line Interface)

Port Security Commands

These commands can be used to disable the learning function or manually specify secure addresses for a port. You may want to leave port security off for an initial training period (i.e., enable the learning function) to register all the current VLAN members on the selected port, and then enable port security to ensure that the port will drop any incoming frames with a source MAC address that is unknown or has been previously learned from another port.

Port Security Commands

Command

Function

 

 

port security

Syntax:

This command enables or

port security [action {shutdown trap trap-and-shutdown}

configures port security.

max-mac-count address-count]

no port security [action max-mac-count]

Use the no form without any key-

• action - Response to take when port security is violated.

words to disable port security.

shutdown - Disable port only.

Use the no form with the

trap - Issue SNMP trap message only.

appropriate keyword to restore the

trap-and-shutdown - Issue SNMP trap message and disable port.

default settings for a response to

max-mac-count

security violation or for the

maximum number of allowed

address-count - The maximum number of MAC addresses that can be

addresses.

learned on a port. (Range: 0-1024)

 

Default Settings:

 

• Status: Disabled

 

• Action: None

 

• Maximum Addresses: 0

 

Command Mode: Interface Configuration (Ethernet)

 

Command Usage: If you enable port security, the switch stops learning

 

new MAC addresses on the specified port when it has reached a config-

 

ured maximum number. Only incoming traffic with source addresses

 

already stored in the dynamic or static address table will be accepted.

 

First use the port security max-mac-count command to set the number of

 

addresses, and then use the port security command to enable security

 

on the port.

 

Use the no port security max-mac-count command to disable port secu-

 

rity and reset the maximum number of addresses to the default.

 

You can also manually add secure addresses with the mac-address-table

 

static command.

 

A secure port has the following restrictions:

 

• Cannot use port monitoring.

 

• Cannot be a multi-VLAN port.

 

• Cannot be connected to a network interconnection device.

 

• Cannot be a trunk port.

 

If a port is disabled due to a security violation, it must be manually re-

 

enabled using the no shutdown command.

 

Example: The following example enables port security for port 5, and

 

sets the response to a security violation to issue a trap message:

 

Console(config)#interface ethernet 1/5

 

Console(config-if)#port security action trap

 

 

NXA-ENET24 - Software Management Guide

203

 

 

Page 222 Page 224
Page 223
Image 223
AMX NXA-ENET24 manual Port Security Commands, Command Function Port security Syntax
Page 222 Page 224

NXA-ENET24 specifications

The AMX NXA-ENET24 is a versatile and powerful networked control interface designed to meet the growing demands of modern AV systems. This network switch offers an exceptional combination of reliability, performance, and scalability, making it an ideal choice for professional environments such as conference rooms, educational facilities, and control rooms.

One of the key features of the NXA-ENET24 is its 24-port configuration, allowing for extensive connectivity options. Each port supports 10/100/1000 Mbps speeds, ensuring that high bandwidth applications are handled with ease. Additionally, the switch incorporates advanced auto-negotiation technology, which automatically configures the optimal speed and duplex mode for connected devices. This ensures seamless connectivity and minimizes the risk of network disruptions.

The NXA-ENET24 is designed with advanced management capabilities, including support for VLANs, which helps to segment network traffic for enhanced security and performance. Network administrators can easily create virtual local area networks to optimize traffic flow and reduce congestion. This feature is particularly beneficial in environments where multiple AV systems operate concurrently.

Another significant characteristic of the NXA-ENET24 is its support for Power over Ethernet, or PoE. This feature enables the switch to deliver electrical power alongside data through the network cables. As a result, devices such as IP cameras, VoIP phones, and wireless access points can be powered directly from the switch, simplifying deployment and reducing the need for additional power sources.

Monitoring and management of the switch are made easier through a user-friendly interface. The NXA-ENET24 supports SNMP for network management, allowing users to monitor performance metrics, configure settings, and receive alerts in case of issues. This level of oversight is crucial for maintaining the stability of AV systems in mission-critical applications.

Durability is another hallmark of the NXA-ENET24 design. The switch features a robust chassis that is engineered to withstand the rigors of professional use. With cooling mechanisms in place and a fanless design, the NXA-ENET24 operates quietly and efficiently, making it suitable for environments where noise is a concern.

In conclusion, the AMX NXA-ENET24 is a powerful, reliable, and feature-rich network switch that effectively supports modern AV applications. With its extensive connectivity options, advanced management capabilities, PoE support, and durable design, it is an excellent choice for integrators and organizations looking to optimize their network infrastructure.
Top Page Image Contents