Allied Telesis AT-S60 User Manual

Chapter 8: Port Security Command

102

learn

Specifies the maximum number of dynamic MAC

addresses a port on the switch can learn. This
parameter applies only to ports set to the Limited
security mode. The range is 1 to 150 addresses. The
default is 100.

intrusionaction

Specifies the action taken by the port in the event port

security is violated:

discard Discards invalid frames. This is the default

setting.

trap

Discards invalid frames and sends a
management trap.

disable Discards invalid frames, sends a

management trap, and disables the port.

participate

Enables or disables the intrusion action on the port.

This option only applies when a port’s intrusion action
is set to trap or disable. This option does not apply
when intrusion action is set to discard. Options are:

yes

Enables the trap or disable intrusion action.

no

Disables the trap or disable intrusion action.
This is the default.

Description

This command sets and configures a port’s security mode. Only one
mode can be active on a port at a time.

To view a port’s current security mode, use the command SHOW
SWITCH PORT on page 99.

The management software displays a confirmation prompt whenever
you perform this command. Responding with Y for yes completes your
command, while N for no cancels the command.

Examples

The following command sets the security level to Locked for Ports 2, 6,
and 8 on the line card in Slot 7:

set switch port=7.2,6,8 securitymode=locked

The Participate option is not required in this example since it is using the
default intrusion action of discard.