From: El ayachi HADEK (elayachi.hadek@marocconnect.com)
Date: Wed Nov 30 2005 - 14:29:06 GMT-3
violation traffic will be dropped, there is no other choice.
http://www.cisco.com/univercd/cc/td/doc/product/lan/c3550/12225sec/3550scg/s
wtrafc.htm#wp1038501
you can use mac acl with the logg option! try it and let me know!
-----Message d'origine-----
De : nobody@groupstudy.com [mailto:nobody@groupstudy.com]De la part de
Chad Hintz
Envoye : Wednesday, November 30, 2005 4:57 PM
A : ccie lab
Objet : Port Security
Hi All,
I have been trying to get through a port security question for a customer
and wanted to verify my configuration.
If I wanted to setup the switch to only allow the directly connected
router's mac address to be allowed on the port and if another is detect to
continue to forward packets but log a message. Would this be correct?
Routers' mac:000b.be90.2d72
interface GigabitEthernet0/1
switchport mode access
switchport port-security
switchport port-security violation restrict
switchport port-security mac-address 000b.be90.2d72
Thanks,
Chad
---------------------------------
Yahoo! Music Unlimited - Access over 1 million songs. Try it free.
This archive was generated by hypermail 2.1.4 : Thu Dec 01 2005 - 09:12:08 GMT-3