9 port security configuration, Introduction to port security, Port security overview – H3C Technologies H3C S7500E Series Switches User Manual
Page 169: Port security configuration
9-1
9
Port Security Configuration
This chapter includes these sections:
z
z
Port Security Configuration Task List
z
z
Setting the Maximum Number of Secure MAC Addresses
z
Setting the Port Security Mode
z
Configuring Port Security Features
z
Configuring Secure MAC Addresses
z
Ignoring Authorization Information from the Server
z
Displaying and Maintaining Port Security
z
Port Security Configuration Examples
z
Introduction to Port Security
Port Security Overview
Port security is a MAC address-based security mechanism for network access control. It is an
extension to the existing 802.1X authentication and MAC authentication. It prevents access of
unauthorized devices to a network by checking the source MAC address of inbound traffic and access
to unauthorized devices by checking the destination MAC address of outbound traffic.
Port security allows you to configure a port to operate in an intended security mode to control the MAC
address learning or authentication on the port. This enables the port to learn legal source MAC
addresses.
With port security enabled, frames whose source MAC addresses cannot be learned by the device in
a security mode are considered illegal; the events that users do not pass 802.1X authentication or
MAC authentication are considered illegal.
Upon detection of illegal frames or events, the device takes the pre-defined action automatically. While
enhancing the system security, this reduces your maintenance burden greatly.