FORWARDING AND FILTERING

Configuring Port Security

If you enable port security, the switch will stop learning new addresses on the specified port. Only incoming traffic with source addresses already stored in the dynamic address table will be accepted. The MAC addresses already in the address table will be retained and will not age out. This can be used to prevent unauthorized access to the switch.

To use port security, first allow the switch to dynamically learn the source MAC address for frames received on an interface for an initial training period, and then enable port security to stop address learning. Be sure you enable the learning function long enough to ensure that all valid members have been registered on the selected interface.

To add new members at a later time, you can manually add static addresses, or turn off port security to reenable the learning function long enough for new members to be registered. Learning may then be disabled again, if desired, for security.

Web – Click Administrator=>Filtering Database=>Port Security. Mark the the ports for which you want to enable port security, then click Apply.

3-25

Page 47
Image 47
SMC Networks SMC6709L2 manual Configuring Port Security