10 port security, 1 port security on port, Port security – Siemens S223 User Manual

UMN:CLI User Manual

SURPASS hiD 6615 S223/S323 R1.5

158 A50010-Y3-C150-2-7619

To configure max new hosts, use the following command.

Command Mode

Description

max-new-hosts

PORTS MAX-

MAC-NUMBER

The number of MAC address that can be learned on
the port for a second.

max-new-hosts

system PORTS

MAX-MAC-NUMBER

Bridge

The number of MAC address that can be learned on
the system for a second.

To delete configured max new hosts, use the following command.

Command Mode

Description

no max-new-hosts

PORTS

Deletes the number of MAC address that can be
learned on the port.

no max-new-hosts system

Bridge

Deletes the number of MAC address that can be
learned on the system.

To display configured max new hosts, use the following command.

Command Mode

Description

show max-new-hosts

Enable

Global
Bridge

Shows the configured Max-new-hosts.

If MAC that already counted disappears before passing 1 second and starts learning
again, it is not counted. In case the same MAC is detected on the other port also, it is not
counted again. For example, if MAC that was learned on port 1 is detected on port 2, it is
supposed that MAC moved to the port 2. So, it is deleted from the port 1 and learned on
the port 2 but it is not counted.

7.10 Port

Security

You can use the port security feature to restrict input to an interface by limiting and identi-
fying MAC addresses of the PCs that are allowed to access the port. When you assign
secure MAC addresses to a secure port, the port does not forward packets with source
addresses outside the group of defined addresses. If you limit the number of secure MAC
addresses to one and assign a single secure MAC address, the PC attached to that port
is assured the full bandwidth of the port.

7.10.1

Port Security on Port

Step 1
Enable port security on the port.

Command Mode

Description

port security

PORTS Bridge

Enables port security on the port.

PORT: selects port number