Configuring Protected Ports

Configuring Protected Ports

The Protected Port feature is used to prevent ports from forwarding traffic to each other, even when they are on the same VLAN. Ports may be designated as either protected or unprotected. Ports are unprotected by default. Multiple groups of protected ports are supported.

Protected Port Operation

Ports that are configured to be protected cannot forward traffic to other protected ports in the same group, regardless of having the same VLAN membership. However, protected ports can forward traffic to ports which are unprotected (not listed in any group). Protected ports can also forward traffic to protected ports in a different group, if they are in the same VLAN. Unprotected ports can forward traffic to both protected and unprotected ports. A port may belong to only one group of protected ports.

This feature only applies to ports within a switch or a stack. It does not apply across multiple switches in a network.

Commands

For information about...

Refer to page...

 

 

set port protected

7-56

 

 

show port protected

7-57

 

 

clear port protected

7-57

 

 

set port protected name

7-58

 

 

show port protected name

7-58

 

 

clear port protected name

7-59

 

 

set port protected

Use this command to specify a port to be protected and assign the port to a group of protected ports. A port can be assigned to only one group.

Syntax

set port protected port-string group-id

Parameters

port‐string

Specifies the port or ports to be protected.

group‐id

Specifies the id of the group to which the ports should be assigned. Id can

 

range from 0 to 2.

 

 

Defaults

None.

Mode

Switch command, read‐write.

7-56 Port Configuration

Page 224
Image 224
Enterasys Networks 9034313-07 manual Configuring Protected Ports, Set port protected, Protected Port Operation