Use the Port Security Interface Status page to configure the port security feature on a selected interface.
To access this page, click
in the navigation menu.Field | Description |
---|---|
Interface | The interface associated with the rest of the data in the row. When configuring the port security settings for one or more interfaces, this field lists the interfaces that are being configured. |
Port Security Mode | The administrative mode of the port security feature on the interface. The port security mode must be enabled both globally and on an interface to enforce the configured limits for the number of static and dynamic MAC addresses allowed on that interface. |
Max Dynamic Addresses Allowed | The number of source MAC addresses that can be dynamically learned on an interface. If an interface reaches the configured limit, any other addresses beyond that limit are not learned, and the frames are discarded. Frames with a source MAC address that has already been learned will be forwarded. A dynamically-learned MAC address is removed from the MAC address table if the entry ages out, the link goes down, or the system reboots. Note that the behavior of a dynamically-learned address changes if the sticky mode for the interface is enabled or the address is converted to a static MAC address. |
Max Static Addresses Allowed | The number of source MAC addresses that can be manually added to the port security MAC address table for an interface. If the port link goes down, the statically configured MAC addresses remain in the MAC address table. The maximum number includes all dynamically-learned MAC addresses that have been converted to static MAC addresses. |
Sticky Mode | The sticky MAC address learning mode, which is one of
the following:
|
Violation Trap Mode | Whether the port security feature sends a trap to the SNMP agent when a port is locked and a frame with a MAC address not currently in the table arrives on the port. A port is considered to be locked once it has reached the maximum number of allowed dynamic or static MAC address entries in the port security MAC address table. |
Violation Shutdown Mode | Whether the port security feature shuts down the port after MAC limit is reached. |
Last Violation MAC/VLAN | The source MAC address and, if applicable, associated VLAN ID of the last frame that was discarded at a locked port. |