Configuring Device Security
Defining Traffic Control
Cisco Small Business SFE/SGE Managed Switches Administration Guide
78
4
-
Classic Lock
— Locks the port using the classic lock mechanism. The
port is immediately locked, regardless of the number of addresses that
have already been learned.
-
Limited Dynamic Lock
— Locks the port by deleting the current dynamic
MAC addresses associated with the port. The port learns up to the
maximum addresses allowed on the port. Both relearning and aging
MAC addresses are enabled.
•
Max Entries — Specifies the number of MAC addresses that can be learned on
the port. The Max Entries field is enabled only if Locked is selected in the
Interface Status field. In addition, the Limited Dynamic Lock mode is selected.
The possible range is 1-128. The default is 1.
•
Action — Indicates the action to be applied to packets arriving on a locked
port. The possible field values are:
-
Discard
— Discards packets from any unlearned source. This is the
default value.
-
Forward
— Forwards packets from an unknown source without learning
the MAC address.
-
Shutdown
— Discards packets from any unlearned source and shuts
down the port. The port remains shut down until reactivated, or until the
device is reset.
•
Trap — Enables traps when a packet is received on a locked port. The
possible field values are:
-
Enable
— Enables traps.
-
Disable
— Disables traps.
•
Trap Frequency (Sec) — Displays the amount of time (in seconds) between
traps. The default value is 10 seconds.
STEP 2
Define the relevant fields.
STEP 3
Click Apply. Port security is defined, and the device is updated.