16 port security – Allied Telesis AT-9724TS User Manual

To configure Traffic Control, first select the Switch’s Unit ID number from the pull down menu and then a group of ports by using the Group pull down

menu. Finally, enable or disable the Broadcast Storm, Multicast Storm and Destination Unknown using their corresponding pull-down menus.
The purpose of this window is to limit too many broadcast, multicast or unknown unicast packets folding the network. Each port has a counter that tracks the

number of broadcast packets received per second, and this counter is cleared once every second. If the broadcast, multicast or unknown unicast storm control is

enabled, the port will discard all broadcast, multicast or unknown unicast packets received when the counter exceeds or equals the Threshold specified.
The Threshold value is the upper threshold at which the specified traffic control is switched on.This is the number of Broadcast, Multicast or DLF packets, in

Kpps (kilopackets per second), received by the Switch that will trigger the storm traffic control measures.The Threshold value can be set from 0 to 255

kilopackets per second.The default setting is 128.The settings of each port may be viewed in the Traffic Control Table in the same window. Click Apply to

implement changes made.

6-16 Port Security

A given port's (or a range of ports') dynamic MAC address learning can be locked such that the current source MAC addresses entered into the MAC address

forwarding table can not be changed once the port lock is enabled.The port can be locked by using the Admin State pull-down menu to Enabled, and clicking

Apply.
Port Security is a security feature that prevents unauthorized computers (with source MAC addresses) unknown to the Switch prior to locking the port (or

ports) from connecting to the Switch's locked ports and gaining access to the network.

Figure 6- 45. Port Security Settings and Port Security Table window

The following parameters can be set:

Parameter

Description

Unit

Choose the Switch ID number of the Switch in the switch stack to be modified.

From/To

A consecutive group of ports may be configured starting with the selected port.

Admin State

This pull-down menu allows you to enable or disable Port Security (locked MAC address table for the selected

ports).

Max. Learning Addr. (0-64)

The number of MAC addresses that will be in the MAC address forwarding table for the selected switch and

group of ports.

Mode

This pull-down menu allows you to select how the MAC address table locking will be implemented on the

Switch, for the selected group of ports.The options are:
Permanent – The locked addresses will not age out after the aging timer expires.
DeleteOnTimeout – The locked addresses will age out after the aging timer expires.
DeleteOnReset – The locked addresses will not age out until the Switch has been reset.

Click Apply to implement changes made.

64

Allied Telesyn AT-9724TS High-Density Layer 3 Stackable Gigabit Ethernet Switch