11.4
Port Access Control List Locked Ports
With the Port Access Control List Locked Ports functionality, MAC addresses that do not age
are collected on a port after the
start
command. With the
stop
command, these addresses
are converted to static entries in the address list and the aging is reactivated for all the
addresses that follow.
If the learning of addresses on this port is then disabled, data packets are only forwarded to
the static addresses entered in the table.
This section describes commands relevant for the configuration of this function.
11.4.1
The "show" commands
This section describes commands with which you display various settings.
11.4.1.1
show lock port
Description
This command shows whether or not the learning of MAC entries is enabled or locked on an
interface.
Requirement
You are in the User EXEC mode or in the Privileged EXEC mode.
The command prompt is as follows:
cli>
or
cli#
Syntax
Call up the command with the following parameters:
show lock port [<interface-type><interface-id>]
The parameters have the following meaning:
Parameter
Description
Range of values / note
interface-type
Type or speed of the interface
Enter a valid interface.
interface-id
Module no. and port no. of the interface
For information on names of addresses and interfaces, refer to the section "Addresses and
interface names (Page 36)".
If you do not select an interface, the configuration of all interfaces is displayed.
Security and authentication
11.4 Port Access Control List Locked Ports
SCALANCE XB-200/XC-200/XF-200BA/XP-200/XR-300WG Command Line Interface
518
Configuration Manual, 07/2017, C79000-G8976-C361-06