Configuring the trap feature – H3C Technologies H3C WX3000 Series Unified Switches User Manual

18-7

To do…

Use the command…

Remarks

Return to system view

quit

—

Set the timer during which the port
remains disabled

port-security timer disableport
timer

Optional
20 seconds by default

The port-security timer disableport command is used in conjunction with the port-security

intrusion-mode

disableport-temporarily command to set the length of time during which the port

remains disabled.

If you configure the NTK feature and execute the port-security intrusion-mode blockmac command
on the same port, the device will be unable to disable the packets whose destination MAC address is
illegal from being sent out that port; that is, the NTK feature configured will not take effect on the packets
whose destination MAC address is illegal.

Configuring the Trap feature

Follow these steps to configure port security trapping:

To do…

Use the command…

Remarks

Enter system view

system-view

—

Enable sending traps for
the specified type of
event

port-security trap

{ addresslearned |

intrusion

| dot1xlogon | dot1xlogoff |

dot1xlogfailure

| ralmlogon | ralmlogoff |

ralmlogfailure

}

Required
By default, no trap is sent.

Ignoring the Authorization Information from the RADIUS Server

After an 802.1x user or MAC-authenticated user passes Remote Authentication Dial-In User Service
(RADIUS) authentication, the RADIUS server delivers the authorization information to the device. You
can configure a port to ignore the authorization information from the RADIUS server.

Follow these steps to configure a port to ignore the authorization information from the RADIUS server:

To do…

Use the command…

Remarks

Enter system view

system-view

—

Enter Ethernet port view

interface

interface-type

interface-number

—