Clearing port security statistics

Disabling the port for a specified amount of time

You can configure the device to disable the port for a specified amount of time when a security violation occurs.

To shut down the port for 5 minutes when a security violation occurs, enter the following commands.

Brocade(config)# interface ethernet 1/1/7

Brocade(config-if-e10000-1/1/7)# port security

Brocade(config-port-security-e10000-1/1/7)# violation shutdown 5

Syntax: violation shutdown minutes

The minutes can be from 0 through 1440 minutes. Specifying 0 shuts down the port permanently when a security violation occurs.

Clearing port security statistics

You can clear restricted MAC addresses and violation statistics from ports on all ports or on individual ports.

Clearing restricted MAC addresses

To clear all restricted MAC addresses globally, enter the clear port security restricted-macs all command.

Brocade# clear port security restricted-macs all

To clear restricted MAC addresses on a specific port, enter a command such as the following.

Brocade# clear port security restricted-macs ethernet 1/1/5

Syntax: clear port security restricted-macs all ethernet port

Specify the port variable in stack-unit/slotnum/portnumformat.

Clearing violation statistics

To clear violation statistics globally, enter the clear port security statistics all command.

Brocade# clear port security statistics all

To clear violation statistics on a specific port, enter a command such as the following.

Brocade# clear port security statistics ethernet 1/1/5

Syntax: clear port security statistics all ethernet port

Specify the port variable in stack-unit/slotnum/portnumformat.

Brocade ICX 6650 Security Configuration Guide

207

53-1002601-01

 

Page 227
Image 227
Brocade Communications Systems 6650 manual Clearing port security statistics, Clearing restricted MAC addresses